[Oisf-users] No output module named eve-log, ignoring, 2.0dev (rev 18edec8)
Victor Julien
lists at inliniac.net
Tue Feb 11 08:49:11 UTC 2014
On 02/10/2014 06:46 PM, Tom DeCanio wrote:
> Does your build environment contain libjansson? Without libjansson you
> won't get JSON output support. See libjansson: below.
I've just added a warning for this case.
Cheers,
Victor
> Suricata Configuration:
> AF_PACKET support: yes
> PF_RING support: no
> NFQueue support: no
> IPFW support: no
> DAG enabled: no
> Napatech enabled: no
> Unix socket enabled: yes
>
> libnss support: yes
> libnspr support: yes
> libjansson support: yes
> Prelude support: no
> PCRE jit: yes
> libluajit: no
> libgeoip: no
> Non-bundled htp: no
> Old barnyard2 support: no
> CUDA enabled: no
>
> Suricatasc install: yes
>
> Unit tests enabled: no
> Debug output enabled: no
> Debug validation enabled: no
> Profiling enabled: no
> Profiling locks enabled: no
>
>
>
> On Mon, Feb 10, 2014 at 4:50 PM, Peter Manev <petermanev at gmail.com
> <mailto:petermanev at gmail.com>> wrote:
>
> On Mon, Feb 10, 2014 at 5:37 PM, Stefan Sabolowitsch
> <Stefan.Sabolowitsch at felten-group.com
> <mailto:Stefan.Sabolowitsch at felten-group.com>> wrote:
> > Hi all,
> > have here 2.0dev (rev 18edec8) and want to test the new "eve-log"
> json output file format, however i get this Warning.
> >
> > [29739] 10/2/2014 -- 16:18:55 - (runmodes.c:580) <Warning>
> (RunModeInitializeOutputs) -- [ERRCODE: SC_ERR_INVALID_ARGUMENT(13)]
> No output module named eve-log, ignoring
> >
> > thanks for any help.
> > Stefan
>
>
>
> What does your yaml section for eve-log look like?
>
>
> --
> Regards,
> Peter Manev
> _______________________________________________
> Suricata IDS Users mailing list:
> oisf-users at openinfosecfoundation.org
> <mailto:oisf-users at openinfosecfoundation.org>
> Site: http://suricata-ids.org | Support:
> http://suricata-ids.org/support/
> List:
> https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> OISF: http://www.openinfosecfoundation.org/
>
>
>
>
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> OISF: http://www.openinfosecfoundation.org/
>
--
---------------------------------------------
Victor Julien
http://www.inliniac.net/
PGP: http://www.inliniac.net/victorjulien.asc
---------------------------------------------
More information about the Oisf-users
mailing list