<div dir="ltr"><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#20124d">Hi Team,</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#20124d"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#20124d">Please update on my issue i am facing...??</div></div><div class="gmail_extra"><br clear="all"><div><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div style="margin:0px"><br></div><table border="0" cellpadding="0" cellspacing="0" style="margin:0px;padding:0px;border:0px;outline:0px;font-size:14px;font-family:proxima-nova-1,proxima-nova-2,Tahoma,Helvetica,Verdana,sans-serif;vertical-align:baseline;border-spacing:0px;color:rgb(51,51,51);line-height:18.200000762939453px"><tbody style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline"><tr style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline"><td style="padding:0px;border:0px;outline:0px;font-style:inherit;font-size:0px;font-family:inherit;vertical-align:baseline;width:auto;height:30px"> </td></tr><tr style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline"><td style="padding:0px;border:0px;outline:0px;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline;width:auto"><div style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline;line-height:0"><a href="http://about.me/arun.saini" style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline;color:rgb(43,130,173);text-decoration:none;display:inline-block" target="_blank"><table border="0" cellpadding="0" cellspacing="0" style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline;border-spacing:0px"><tbody style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline"><tr style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline"><td align="left" valign="top" style="padding:0px;border:0px;outline:0px;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:top;width:107px;line-height:1"><div style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline"><img src="http://d3mod6n032mdiz.cloudfront.net/thumb2/a/r/u/arun.saini/arun.saini-105x70.jpg" alt="" width="105" height="70" style="margin:0px;padding:0px;border:1px solid rgb(238,238,238);outline:0px;font-weight:inherit;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline;display:block"></div></td><td style="padding:0px;border:0px;outline:0px;font-style:inherit;font-size:0px;font-family:inherit;vertical-align:baseline;width:10px"><img alt="--" width="0" height="0" style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-family:inherit;vertical-align:baseline"> </td><td align="left" valign="bottom" style="padding:0px 0px 3px;border:0px;outline:0px;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:bottom;width:auto;line-height:1"><div style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:bold;font-style:inherit;font-size:18px;font-family:proxima-nova-1,Proxima-Nova,Helvetica,Arial,sans-serif;vertical-align:baseline;color:rgb(51,51,51)">Arun Saini</div><div style="margin:1px 0px 0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:12px;font-family:proxima-nova-1,Proxima-Nova,Helvetica,Arial,sans-serif;vertical-align:baseline"><img alt="http://" width="0" height="0" style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:12px;font-family:inherit;vertical-align:baseline">about.me/arun.saini</div></td></tr></tbody></table></a>                              </div></td></tr><tr style="margin:0px;padding:0px;border:0px;outline:0px;font-weight:inherit;font-style:inherit;font-size:14px;font-family:inherit;vertical-align:baseline"><td style="padding:0px;border:0px;outline:0px;font-style:inherit;font-size:0px;font-family:inherit;vertical-align:baseline;width:auto;height:20px"><br></td></tr></tbody></table></div></div><font size="2"><b><i><span style="font-family:Helvetica,sans-serif;color:rgb(43,130,173)">Mobile: +91-9890738762</span></i></b><br></font><div><div><p style="text-align:left;background-image:initial;background-repeat:initial"><b><i><span style="font-family:Helvetica,sans-serif;color:rgb(43,130,173)"><font size="2"><a href="http://in.linkedin.com/in/mailarunsaini" target="_blank">in.linkedin.com/in/mailarunsaini</a></font></span></i></b></p></div></div></div></div></div>
<br><div class="gmail_quote">On 23 June 2016 at 22:05, Arun Saini <span dir="ltr"><<a href="mailto:mailarunsaini@...11827..." target="_blank">mailarunsaini@...11827...</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><p dir="ltr">Hi,<br>
Please guide why some packet are not going in acid_event?<br>
Already shared screen shots!!!</p>
<p dir="ltr">Sincerely,</p>
<p dir="ltr">Arun Saini<br>
<a href="http://about.me/arun.saini" target="_blank">http://about.me/arun.saini</a>                                            <br>
Mobile :+91-9890738762</p><div class="HOEnZb"><div class="h5">
<p dir="ltr">    </p>
<div class="gmail_quote">On 23 Jun 2016 9:43 pm, "Joel Esler (jesler)" <<a href="mailto:jesler@...589..." target="_blank">jesler@...846....589...</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word">Yes, you need that table.  it’s required by Base.<div><br></div><div><br><div>
<div style="color:rgb(0,0,0);letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;word-wrap:break-word"><div style="color:rgb(0,0,0);letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;word-wrap:break-word"><div style="margin:0px;line-height:normal;font-family:'Lucida Grande'">--</div><div style="margin:0px;line-height:normal;font-family:'Lucida Grande'"><b>Joel Esler</b></div><div style="margin:0px;line-height:normal;font-family:'Lucida Grande'">Manager, Talos Group</div><div style="margin:0px;line-height:normal;font-family:'Helvetica Neue'"><br></div></div></div><br><br>
</div>
<br><div><blockquote type="cite"><div>On Jun 23, 2016, at 6:37 AM, Arun Saini <<a href="mailto:mailarunsaini@...11827..." target="_blank">mailarunsaini@...11827...</a>> wrote:</div><br><div><div dir="ltr" style="font-family:Helvetica;font-size:12px;font-style:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px"><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(32,18,77)">Hi,</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(32,18,77)"><br></div><div><div data-smartmail="gmail_signature"><div dir="ltr"><div></div></div></div></div><div class="gmail_quote"><div dir="ltr"><div style="font-family:tahoma,sans-serif;color:rgb(32,18,77)">we are using Barnyard2 version 2.1.13<build 327> and<span> </span><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(32,18,77);display:inline">​attached ​</div>error sc<div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(32,18,77);display:inline">​r​</div>e<div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(32,18,77);display:inline">​e​</div>n shot<span> </span><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(32,18,77);display:inline">​for information​</div>,</div><div style="font-family:tahoma,sans-serif;color:rgb(32,18,77)"><br></div><div style="font-family:tahoma,sans-serif;color:rgb(32,18,77)"><span><div style="font-size:12.8px"> snort version 2.9.5.5 GRE [build 205]</div><div style="font-size:12.8px">libpcap version 1.3.0</div><div style="font-size:12.8px">PCRE 8.30 2012-02-04</div><div style="font-size:12.8px">Zlib 1.2.7</div><div style="font-size:12.8px"><br></div></span><div style="font-size:12.8px">Mysql snort databese tables,</div><div style="font-size:12.8px"><br></div><div style="font-size:12.8px"><div style="font-size:12.8px">mysql> show tables;</div><div style="font-size:12.8px">+------------------+</div><div style="font-size:12.8px">| Tables_in_snort  |</div><div style="font-size:12.8px">+------------------+</div><div style="font-size:12.8px">| acid_ag          |</div><div style="font-size:12.8px">| acid_ag_alert    |</div><div style="font-size:12.8px">| <span style="font-size:12.8px;background-color:rgb(255,255,0)">acid_event</span><span style="font-size:12.8px"> <span> </span></span><span style="font-size:12.8px">       |</span></div><div style="font-size:12.8px">| acid_ip_cache    |</div><div style="font-size:12.8px">| base_roles       |</div><div style="font-size:12.8px">| base_users       |</div><div style="font-size:12.8px">| data             |</div><div style="font-size:12.8px">| detail           |</div><div style="font-size:12.8px">| encoding         |</div><div style="font-size:12.8px">| event            |</div><div style="font-size:12.8px">| icmphdr          |</div><div style="font-size:12.8px">| iphdr            |</div><div style="font-size:12.8px">| opt              |</div><div style="font-size:12.8px">| reference        |</div><div style="font-size:12.8px">| reference_system |</div><div style="font-size:12.8px">| schema           |</div><div style="font-size:12.8px">| sensor           |</div><div style="font-size:12.8px">| sig_class        |</div><div style="font-size:12.8px">| sig_reference    |</div><div style="font-size:12.8px">| signature        |</div><div style="font-size:12.8px">| tcphdr           |</div><div style="font-size:12.8px">| udphdr           |</div><div style="font-size:12.8px">+------------------+</div></div></div><div><font color="#20124d" face="tahoma, sans-serif">do we need </font><span style="color:rgb(32,18,77);font-family:tahoma,sans-serif;font-size:12.8px"> </span><span style="color:rgb(32,18,77);font-family:tahoma,sans-serif;font-size:12.8px;background-color:rgb(255,255,0)">acid_event</span><font color="#20124d" face="tahoma, sans-serif"><span style="font-size:12.8px">  table in our database it ? or please suggest us whether do we actually require"</span></font><span style="color:rgb(32,18,77);font-family:tahoma,sans-serif;font-size:12.8px">acid_ag          |</span></div><div style="color:rgb(32,18,77);font-family:tahoma,sans-serif;font-size:12.8px">| acid_ag_alert    |</div><div style="color:rgb(32,18,77);font-family:tahoma,sans-serif;font-size:12.8px">| <span style="font-size:12.8px;background-color:rgb(255,255,0)">acid_event</span><span style="font-size:12.8px">  </span><span style="font-size:12.8px">       |</span></div><div style="font-family:tahoma,sans-serif;color:rgb(32,18,77)"><span style="font-size:12.8px">| acid_ip_cache</span><span style="font-size:12.8px"> </span><span style="font-size:12.8px">"</span></div><div style="font-family:tahoma,sans-serif;color:rgb(32,18,77)"><span style="font-size:12.8px"><br></span></div><div style="font-family:tahoma,sans-serif;color:rgb(32,18,77)"><span style="font-size:12.8px">in our database ?</span></div><div style="font-family:tahoma,sans-serif;color:rgb(32,18,77)"><span style="font-size:12.8px">it is the table where the screen shot saying that the events are not found the way...</span></div><div><font color="#20124d" face="tahoma, sans-serif"><span style="font-size:12.8px">surely we will upgrade our snort but just want to diagnose why this error is coming on screen.</span></font></div></div><div class="gmail_extra"><br clear="all"><div><div data-smartmail="gmail_signature"><div dir="ltr"><div dir="ltr"><div style="margin:0px"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(32,18,77);display:inline">​</div>​Sincerely,</div><div dir="ltr">Arun Saini</div><div dir="ltr">Mobile :+91-9890738762</div><div dir="ltr"><br></div></div></div></div><div><div><div class="gmail_quote">On 23 June 2016 at 07:33, Joel Esler (jesler)<span> </span><span dir="ltr"><<a href="mailto:jesler@...589..." target="_blank">jesler@...589...</a>></span><span> </span>wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-style:solid;border-left-color:rgb(204,204,204);padding-left:1ex"><div dir="auto"><div>I would help us tremendously if you could tell us what version of Barnyard2 you are using, what error you are receiving, and even, if you could update your version of Snort, to something that is supported, that'd be great too.<br><br><span style="background-color:rgba(255,255,255,0)">--</span><div><b style="background-color:rgba(255,255,255,0)">Joel Esler</b></div><div><span style="background-color:rgba(255,255,255,0)">Manager, Talos Group</span></div><div><span style="background-color:rgba(255,255,255,0)">Sent from my iPad</span></div></div><div><div><div><br>On Jun 22, 2016, at 9:24 PM, Arun Saini <<a href="mailto:mailarunsaini@...11827..." target="_blank">mailarunsaini@...11827...</a>> wrote:<br><br></div><blockquote type="cite"><div><p dir="ltr">Hi,<span> </span><br>Can anyone help me to know the table names under mysql dB for snort from where Base read the data,actually I have a table named as acid_events and acid_cache where some of the records/data failed to inset, and on base screen I get notification I.e.alerts have NOT found their way into acid " please see attached screen , requesting you to please help us to resolve the issue ..<br></p><p dir="ltr">we are using snort version 2.9.5.5 GRE [build 205]</p><p dir="ltr">libpcap version 1.3.0</p><p dir="ltr">PCRE 8.30 2012-02-04</p><p dir="ltr">Zlib 1.2.7</p><p dir="ltr">I can provide the screen shot if required!!!</p><div><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(32,18,77);display:inline">​​</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:rgb(32,18,77);display:inline">​​</div>Sincerely,<div><br></div><p dir="ltr">Arun Saini<br>Mobile :+91-9890738762</p><div>   <br></div></div></blockquote></div></div><blockquote type="cite"><div><span>------------------------------------------------------------------------------</span><br><span>Attend Shape: An AT&T Tech Expo July 15-16. Meet us at AT&T Park in San</span><br><span>Francisco, CA to explore cutting-edge tech and listen to tech luminaries</span><br><span>present their vision of the future. This family event has something for</span><br><span>everyone, including kids. Get more information and register today.</span><br><span><a href="http://sdm.link/attshape" target="_blank">http://sdm.link/attshape</a></span></div></blockquote><blockquote type="cite"><div><span>_______________________________________________</span><br><span>Snort-users mailing list</span><br><span><a href="mailto:Snort-users@lists.sourceforge.net" target="_blank">Snort-users@lists.sourceforge.net</a></span><br><span>Go to this URL to change user options or unsubscribe:</span><br><span><a href="https://lists.sourceforge.net/lists/listinfo/snort-users" target="_blank">https://lists.sourceforge.net/lists/listinfo/snort-users</a></span><br><span>Snort-users list archive:</span><br><span><a href="http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users" target="_blank">http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users</a></span><br><span></span><br><span>Please visit<span> </span><a href="http://blog.snort.org/" target="_blank">http://blog.snort.org</a><span> </span>to stay current on all the latest Snort news!</span></div></blockquote></div></blockquote></div><br></div></div></div></div><br></div><span><not found the way to acid events.png></span><span><alerts have NOT found their way into acid.png></span></div></blockquote></div><br></div></div></blockquote></div>
</div></div></blockquote></div><br></div>