[Oisf-users] Suricata Logs
Leonard Jacobs
ljacobs at netsecuris.com
Mon Jul 27 20:39:28 UTC 2015
https://redmine.openinfosecfoundation.org/projects/suricata/wiki/_Logstash_Kibana_and_Suricata_JSON_output
https://github.com/pevma/Suricata-Logstash-Templates
Or if you program and you want a customized application, you can write code to enter fast.log into a database then write a front end to the database to display the data.
From: oisf-users-bounces at lists.openinfosecfoundation.org [mailto:oisf-users-bounces at lists.openinfosecfoundation.org] On Behalf Of Saxena, Samiksha
Sent: Monday, July 27, 2015 12:54 PM
To: oisf-users
Subject: [Oisf-users] Suricata Logs
Hi,
I will have more than 20 Suricata engines, where each suricata engine will generate logs based on rules. I want to collect all the logs at one common place from each suricata engine. How should I achieve this?
Also, what is the value of the logs files and how often the logs are generated?
Thanks
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20150727/46d9448e/attachment-0002.html>
More information about the Oisf-users
mailing list