[Snort-users] syslog messages

Nick Duda nduda at ...10466...
Thu Feb 5 08:48:05 EST 2004

If I understand you correctly you want to log to syslog and then monitor
In snort.conf add the following line:
output alert_syslog: LOG_AUTH LOG_ALERT

Then use a utility such as swatch to monitor and alert/echo/email ...
whatever you want with the results.
- Nick


From: Henri Chevallier [mailto:henri_chevallier at ...125...] 
Sent: Wednesday, February 04, 2004 1:21 PM
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] syslog messages

I'd like to analyze my SNORT's logs and would like therefore to know ALL
the messages that SNORT can send. Does someone know where I can find
that ?
    Henri Chevallier
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20040205/3919af98/attachment.html>

More information about the Snort-users mailing list