[Oisf-users] http.log + rules meta information

Nikita Kislitsin kislitsin at group-ib.ru
Sat Jan 11 16:28:15 UTC 2014

Hello there!

I'm new to Suricata, and it seems a great system! Would really appeciate
any help with my small question.

Is there any way to include rules meta-information (*msg *field) to
http.log records? I need not only have details about http request/responce,
but also include a reference to the specific rule based on which this event
was recored. Is it possible to combine in one log file this information?

For now I only see the solution in syncronising two separate log files -
fast.log (with event/rule details) and http.log (with details of http
requests). Would be great to come up with something better.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20140111/83f4cf90/attachment.html>

More information about the Oisf-users mailing list