I would also recommend looking into using Splunk. It's made organizing alerts and searches much easier. Seems to be a very powerful tool for network visibility.
On Thursday, August 1, 2013 4:49:55 PM UTC-4, Ed Guizar wrote: > > I try to sort through the log output looking for a specific server name > and or IP address by entering it in the “location” field. It does not > appear to sort properly as I get all the log info. > > > > Ed Guizar > > > > > -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
