[Oisf-users] different logs for different prio
Peter Manev
petermanev at gmail.com
Mon Jun 5 12:28:36 UTC 2017
On Tue, May 30, 2017 at 7:32 AM, Christoph Kaminski
<christoph.kaminski at biotronik.com> wrote:
> Hi
>
> it is possible to use different log files for different priority of the
> events?
>
> for example:
> prio 1 event > alert_prio1.log
> prio 2 event > alert_prio2.log
> etc
Not at the moment.
What is the reason behind the request? Isn't there something you could
do on the post processing/event log shipping/filtering level instead?
>
> Greetz
> Christoph
>
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
>
--
Regards,
Peter Manev
More information about the Oisf-users
mailing list