[Oisf-users] Not writing to http.log

Brian Hennigar bhennigar at gmail.com
Thu Oct 27 20:46:22 UTC 2016

I'm running suricata 3.1.2 and everything is working great except that it
is not writing anything to http.log.  When suricata starts, the file is
created however it is empty. Other log files are being written to.
(dns.log, eve.json, fast.log, alert-debug.log, etc)

I have it enabled in the yaml
  - http-log:
      enabled: yes
      filename: http.log
      append: yes

And in suricata.log, it initializes it
<Info> - http-log output device (regular) initialized: http.log

Running in IDS mode. This configuration has worked for me in the past.

What else can I be looking for?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20161027/86babaf5/attachment.html>

More information about the Oisf-users mailing list