Integrating snort to ossim
by brucecy92 from LinuxQuestions.org on (#54J3N)
I am trying to integrate snort to ossim but i seem to have an issue .
I can send rsyslogs to ossim using (- logger -p local1.info " send test")
which can be viewed in the ossim box in /var/log/snort/alert .
But i can't receive snort logs , then i tried to verify if snort does log locally the Snort box (Centos 7).
I can't seem to find a solution .
Any one who has tried doing this please give me a hand .
I can send rsyslogs to ossim using (- logger -p local1.info " send test")
which can be viewed in the ossim box in /var/log/snort/alert .
But i can't receive snort logs , then i tried to verify if snort does log locally the Snort box (Centos 7).
I can't seem to find a solution .
Any one who has tried doing this please give me a hand .