[Oisf-users] Sguil & Suricata Help
Darius Fattahipour
fattahipour at yahoo.com
Sun Apr 16 18:22:48 UTC 2017
Hi,
I've been struggling to get suricata alerts appear in Sguil. I've tried many different types of configurations to no avail. Here's the
command I utilize:
suricata -c /etc/nsm/pching-VM-eth1/suricata.yaml -r inside.tcpdump -F /etc/nsm/pching-VM-eth1/bpf-ids.conf
The inside.tcpdump is a pcap file. I've also attached my suricata.yaml.
Thank you, in advance, for your help,John
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20170416/551858bb/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: suricata.yaml
Type: application/x-yaml
Size: 48505 bytes
Desc: not available
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20170416/551858bb/attachment-0001.bin>
More information about the Oisf-users
mailing list