Are u using agentless monitoring, then there is a provision. Use generic_diff plugin og agentless monitoring. Sent from BlackBerry® on Airtel
-----Original Message----- From: satish patel <[email protected]> Sender: [email protected] Date: Fri, 22 Apr 2011 16:28:50 To: <[email protected]> Reply-To: [email protected] Subject: Re: [ossec-list] Alert output limit Thanks dan, Is it possible i get diff output of my iptables command? Currently its dumping full output. it would be good if we have only diff output. -S On Fri, Apr 22, 2011 at 4:11 PM, dan (ddp) <[email protected]> wrote: > There is no setting to do what you want. You'll have to dig into the source. > > On Fri, Apr 22, 2011 at 3:46 PM, satish patel <[email protected]> wrote: >> Hey Guys! >> >> I am monitoring iptable output and doing check_diff to compare and >> alert but somehow i am getting half output of "iptables -L -n" I knew >> there is a limit of email alert output. >> >> can we increase limit ? >> >> -S >> >
