Snort mailing list archives

Re: sugestion remote syslog

From: Joel Esler <jesler () sourcefire com>
Date: Thu, 8 Nov 2012 15:49:31 -0500

On Nov 8, 2012, at 12:37 PM, Leonardo Pezente <lmpezente () gmail com> wrote:

I have one inssue about the capacity of snort to process logs from a router for exemple, but its look like it cant do 
that.

So, why not try to make it be able to ptocess this kind of info?

Because it's an IDS, not a SIEM.

im was thinking on that because a have some routers, and i want to make their network secure, but they just cant 
process the entire snort rules, preprocessors etc.

So, why not try to make it be able to process this kind of info?


See above.

------------------------------------------------------------------------------
Everyone hates slow websites. So do we.
Make your web apps faster with AppDynamics
Download AppDynamics Lite for free today:
http://p.sf.net/sfu/appdyn_d2d_nov

_______________________________________________
Snort-devel mailing list
Snort-devel () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-devel
Archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-devel

Please visit http://blog.snort.org for the latest news about Snort!

Current thread:

sugestion remote syslog Leonardo Pezente (Nov 08)
- Re: sugestion remote syslog Joel Esler (Nov 08)