[Snort-users] Snort and SQL on PFsense
jbitto at ...16055...
Fri Feb 1 11:39:05 EST 2013
Ok...So I got the sql database setup and then in the barnyard tab I put
output database: alert, mysql, dbname=SnortDB user=root host= 192.168.125.10 password=******
Is this right?
Cause when I run it in the log files it gives a fatal error...
FATAL ERROR: database: ;mysql_error: Can't connect to MySQL server on 192.168.125.10' (61)
From: Jeremy Hoel [mailto:jthoel at ...11827...]
Sent: Thursday, January 31, 2013 2:39 PM
To: Josh Bitto
Cc: Snort Users
Subject: Re: [Snort-users] Snort and SQL on PFsense
Barnyard2 is the tool that is used to send snort alerts to sql.
Snort doesn't do anything else with logs..
On Thu, Jan 31, 2013 at 9:56 PM, Josh Bitto <jbitto at ...16055...> wrote:
> Has anyone had any experience setting up Snort to copy log files to mysql or an sql server? We're using snort on pfsense so it wouldn't be a regular distro that I would be running snort on.
More information about the Snort-users