Feature #226
closed
mysql support for Base web interface
Added by Guillaume Le Bigot over 14 years ago.
Updated about 14 years ago.
Description
Hi,
Is there a possibility to connect Suricata with my snort Mysql database in order to keep using Base web interface ?
(i just discovered Suricata and installed Suricata on my server)
Thx for all
We support unified/unified2 output, which can then be feed into base via barnyard/barnyard2. Is there still a need for native mysql support? Or will this work for you?
- Target version deleted (
1.0.1)
Hi, sorry for my lateness and thank you for your help !
It's ok with this installation suricata/barnyard2/BASE.
But i have one more problem on base web interface because all signatures are named in this format "Snort Alert [XXX...]" :
#0-(14-77) [snort] Snort Alert [1:472:0] 2010-09-23 21:46:48
#1-(14-79) [snort] Snort Alert [1:2006380:0] 2010-09-23 21:46:48
etc...
So it's difficult to identify each one alert.
Do you know how i can resolve that ?
It's ok now, i forgot to put the "sid-msg.map" file in suricata directory
- Status changed from New to Closed
Also available in: Atom
PDF