Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Barnyard2 Config to Show Payload in ASCII to Remote Syslog?

    General pfSense Questions
    1
    1
    430
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      dc401 last edited by

      Hi guys,

      Running 2.1 x64 – barnyard2 configuration works fine when alerts in default and complete settings.

      Tried to add the following barnyard2.conf to be inserted from the WebUI"

      output log_syslog_full: sensor_name snort-sensor, local, operation_mode complete

      However when I funnel traffic to the interface that Snort is running on; I see only the alerts still and none of the payload. Has anyone been able to successfully get this to work? We want to be able to get the alert + payload sent to a remote syslog server.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post