[ previous ] [ next ] [ threads ]
 
 From:  Ugo Bellavance <ugob at camo dash route dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: HOWTO for setting up Snort+syslog+m0n0
 Date:  Fri, 13 May 2005 09:00:32 -0400
Abdul Aziz wrote:
> I have use mandrake 9.2 with syslogd-1.4.1, snort-2.1.0, httpd-2.0.48,
> MySQL-4.0.17,webmin-1.121 & so on, remember BIND is not configure.
> 
> 

The first thing to do would be a

# netstat -lnu | grep 514

to see if syslogd is listening on the network.

But I still don't understand why you want m0n0 logs on your snort machine...

> 
> 
>>Abdul Aziz wrote:
>>
>>>ya i wish to use syslog feature & put the IP on m0n0->system
>>>logs->syslog server#192.168.10.150 & also checked blow three check
>>>box.
>>>but i'm curious snort settings ,snort#192.168.10.150 also running
>>>syslogd, plz define me what type of setting for syslogd in snort?
>>
>>You mean the config for syslog on the snort machine?  Give us some
>>details, version of syslog software on the snort machine, OS, distro,
>>etc...
>>
>>'man syslogd' would be a good start.
>>
>>
>>---------------------------------------------------------------------
>>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch