P. 1
Snort Manual

Snort Manual

|Views: 535|Likes:
Published by Camilo Prieto Reyes

More info:

Published by: Camilo Prieto Reyes on Oct 20, 2010
Copyright:Attribution Non-commercial

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as PDF, TXT or read online from Scribd
See more
See less

11/04/2011

pdf

text

original

This module sends alerts to the syslog facility (much like the -s command line switch). This module also allows the
user to specify the logging facility and priority within the Snort config file, giving users greater flexibility in logging
alerts.

Available Keywords

Facilities

• log auth

• log authpriv

• log daemon

• log local0

• log local1

• log local2

• log local3

• log local4

114

• log local5

• log local6

• log local7

• log user

Priorities

• log emerg

• log alert

• log crit

• log err

• log warning

• log notice

• log info

• log debug

Options

• log cons

• log ndelay

• log perror

• log pid

Format

alert_syslog: \

△!

NOTE

As WIN32 does not run syslog servers locally by default, a hostname and port can be passed as options. The
default host is 127.0.0.1. The default port is 514.

output alert_syslog: \

[host=],] \

Example

output alert_syslog: host=10.1.1.1:514,

You're Reading a Free Preview

Download
scribd
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->