Re: No Sensors Showing in Snorby

[waldo kitty <wkitty42 () windstream net>]

On 9/10/2014 5:14 PM, Matt M. wrote:
> Afternoon,
>
> I've been able to get Snort, Barnyard2, Pulled Pork, and Snorby "working".
>   However, I'm not seeing any sensors populate in Snorby.
>
> My *Snort Config* has:
> output unified2: filename snort.log, limit 128, nostamp, mpls_event_types,
> vlan_event_types
>
> *Barnyard2.conf* has:
> output database: log, mysql, dbname=snort user=snorby password=PASSWORD
> host=localhost
>
> I can see that snort is running and creating a snort.log file.

what "log file"?
what is its name?
what does the output section of your snort.conf look like?
is barnyard reading the log file and populating the database?
are barnyard and snorby both using the same database?

details, man... details ;)



-- 
  NOTE: No off-list assistance is given without prior approval.
        Please *keep mailing list traffic on the list* unless
        private contact is specifically requested and granted.

------------------------------------------------------------------------------
Want excitement?
Manually upgrade your production database.
When you want reliability, choose Perforce
Perforce version control. Predictably reliable.
http://pubads.g.doubleclick.net/gampad/clk?id=157508191&iu=/4140/ostg.clktrk
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!