[Oisf-users] Forward Suricata to ELSA on a different box
Doug Burks
doug.burks at gmail.com
Thu Jan 30 18:47:43 UTC 2014
Hi Jim,
If you just want the Suricata alerts to go to a separate ELSA
instance, then one option might be to update the output section of
your barnyard2.conf to send to your separate ELSA syslog.
If you have further questions or problems specific to Security Onion,
please use our Security Onion mailing lists:
https://code.google.com/p/security-onion/wiki/MailingLists
Thanks,
Doug
On Thu, Jan 30, 2014 at 1:21 PM, Richards, James L - DOA
<James.Richards at wisconsin.gov> wrote:
> I have a security onion box set up, and I would like to use this box to send
> suricata alerts to an existing (but separate) ELSA instance.
>
>
>
> I am seeing ways to do this with generic suricata setups, is there a
> simpler, or preferred method with security-onion any of you can recommend?
>
>
>
> Jim Richards
>
>
>
>
>
>
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> OISF: http://www.openinfosecfoundation.org/
--
Doug Burks
More information about the Oisf-users
mailing list