[Snort-users] syslog output

James Lay jlay at ...13475...
Mon May 22 09:06:10 EDT 2006


On Mon, 22 May 2006 12:00:20 -0400
hchlai at ...2792... wrote:

> Can I configure Snort (running on Linux) to do syslog output to a 
> syslog server? It seems "output alert_syslog: host=192.168.1.1, 
> LOG_AUTH LOG_ALERT" doesn't work.
>   I can see Snort is running, but the traffic is not going to the 
> appropriate syslog server. It just don't do anything.
>  Anybody has similar situation?
> 

Make sure you start syslogd with -r.

James

>  HinSuk
> 
> ___________________________________________________
> Try the New Netscape Mail Today!
> Virtually Spam-Free | More Storage | Import Your Contact List
> http://mail.netscape.com
> 
> 
> 
> -------------------------------------------------------
> Using Tomcat but need to do more? Need to support web services,
> security? Get stuff done quickly with pre-integrated technology to
> make your job easier Download IBM WebSphere Application Server
> v.1.0.1 based on Apache Geronimo
> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
> _______________________________________________ Snort-users mailing
> list Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users




More information about the Snort-users mailing list