[Oisf-users] Rotate unified2 log with live rules reload
Brian Hennigar
bhennigar at gmail.com
Fri Dec 4 15:26:53 UTC 2015
Hi!
Is it possible to have suricata start writing to a new unified2 file with a
USR2 signal is sent for a live reload of the rules? I'm not seeing a way
to do this without fully restarting suricata. I'm not wanting to set a
limit size on the unified2 files but wanting it to make a new one every few
hours. Right now, I'm fully restarting suricata to get a new file created.
Thanks,
Brian
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20151204/b5b9c5ab/attachment.html>
More information about the Oisf-users
mailing list