[Oisf-users] Forward Suricata to ELSA on a different box
C. L. Martinez
carlopmart at gmail.com
Fri Jan 31 06:46:37 UTC 2014
On Thu, Jan 30, 2014 at 6:47 PM, Doug Burks <doug.burks at gmail.com> wrote:
> Hi Jim,
>
> If you just want the Suricata alerts to go to a separate ELSA
> instance, then one option might be to update the output section of
> your barnyard2.conf to send to your separate ELSA syslog.
>
> If you have further questions or problems specific to Security Onion,
> please use our Security Onion mailing lists:
> https://code.google.com/p/security-onion/wiki/MailingLists
>
> Thanks,
> Doug
>
Or you can use some type of syslog daemon to send suricata logs to
ELSA node (like rsyslog).
More information about the Oisf-users
mailing list