Barnyard2 Config to Show Payload in ASCII to Remote Syslog?

General pfSense Questions
Log in to reply
  • D

    Hi guys,

    Running 2.1 x64 – barnyard2 configuration works fine when alerts in default and complete settings.

    Tried to add the following barnyard2.conf to be inserted from the WebUI"

    output log_syslog_full: sensor_name snort-sensor, local, operation_mode complete

    However when I funnel traffic to the interface that Snort is running on; I see only the alerts still and none of the payload. Has anyone been able to successfully get this to work? We want to be able to get the alert + payload sent to a remote syslog server.

    0

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy