[Oisf-users] No http logs

Peter Manev petermanev at gmail.com
Tue Jan 15 11:25:53 UTC 2019


On Wed, Jan 9, 2019 at 9:57 AM jayaprasad v <jayaprasad800 at gmail.com> wrote:
>
> Hi All,
>
> We are facing issue with suricata  version 4.1.2 that there are no http logs.
>
> Below is our configuration in suricata.yaml
>
>  - http:
>             extended: yes     # enable this for extended logging information
>             custom: [Accept-Encoding, Accept-Language, Authorization]
>

What would be the result if you comment out "#custom:...." ? Would you
see http events?

>  checksum-validation: no    # To validate the checksum of received
>
> Could you please help on this.
>
> Thanks,
> Jayaprasad
>
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
>
> Conference: https://suricon.net
> Trainings: https://suricata-ids.org/training/



-- 
Regards,
Peter Manev


More information about the Oisf-users mailing list