[Snort-users] Snort not logging to MySQL in windows environment.

Ramamohan Vatyam ramamohan.vatyam at ...14479...
Wed Dec 24 00:56:25 EST 2008

Dear All, 

We are pretty new to Snort. Our environment is as below: snort 2.8, IDSPM on windows 2K3. 

1. We  have configured three local rules with any to any (icmp, tcp and udp protocols) and pushed frpm IDSPM (  
2. Got updated on the snort running on the same local machine. 
3. Folders with different IP address are gettting created in the Log directory. 
4. If I open any file in the folder, logs are generated with the rules created above. 
5. Alert.ids file size is also increasing. 
6. Problem: Logs are not getting into MySQL. 
7. Tested with command : C:\Snort\bin>snort -dev -c c:\Snort\etc\snort.conf -l C:\Snort\log -i3 
8. A log file by name snort.log.xxxx is reated and some rows are getting inserted to MySQL 
9.But normal traffic logs are not getting updated in the MySQL. 

Please help... 

Thanks and Regards, 

Rama Mohan V.V.S, 

E-Mail: ramamohan.vatyam at ...14479... 
"Confidentiality Warning: This message and any attachments are intended only for the use of the intended recipient(s). 
are confidential. and may be privileged. If you are not the intended recipient. you are hereby notified that any 
review. re-transmission. conversion to hard copy. copying. circulation or other use of this message and any attachments is 
strictly prohibited. If you are not the intended recipient. please notify the sender immediately by return email. 
and delete this message and any attachments from your system.

Virus Warning: Although the company has taken reasonable precautions to ensure no viruses are present in this email. 
The company cannot accept responsibility for any loss or damage arising from the use of this email or attachment."
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20081224/b7dc3ca9/attachment.html>

More information about the Snort-users mailing list