[Oisf-users] Frontend/Console supporting IPv6
Russell Fulton
r.fulton at auckland.ac.nz
Thu Apr 5 09:34:48 UTC 2012
On 5/04/2012, at 7:13 PM, Sander Klein wrote:
> Hi All,
>
> I'm having a bit of a problem with IPv6 which is not really Suricata
> related, but I would like to know if or how Suricata users using IPv6
> fixed this.
>
> The problem is that while Suricata/Snort and for instance Snorby
> supports IPv6, I can't find a solution to get IPv6 addresses logged in a
> database which both Suricata and Snorby can use. When using the unified2
> format and Barnyard2 to put the log lines in a database the entries
> containing IPv6 are empty.
>
> Does anyone have a solution for this? Or am I just missing something?
THe standard db schemas used by barnyard do not support IPV6 addresses. I know the developers are planning to revamp the schemas but how long it will take the frontends to catch up is anyones guess.
Russell
More information about the Oisf-users
mailing list