Hi, Actually i tested Ossec agent in Windows 7 operative system but randomly the agent generate much traffic between ossec agent and IDS system (OSSIM).
Below is the error obtain in the log file: 2014/09/17 08:10:57 ossec-agent: INFO: Event count after '20000': 13090576->8311240 (63%) 2014/09/17 08:11:04 ossec-agent: INFO: Event count after '20000': 13089355->8310272 (63%) 2014/09/17 08:11:13 ossec-agent: INFO: Event count after '20000': 13088362->8309912 (63%) 2014/09/17 08:11:22 ossec-agent: INFO: Event count after '20000': 13087346->8308512 (63%) 2014/09/17 08:11:27 ossec-agent(1218): ERROR: Unable to send message to server. 2014/09/17 08:11:28 ossec-agent(1218): ERROR: Unable to send message to server. 2014/09/17 08:11:31 ossec-agent: INFO: Event count after '20000': 13084545->8304416 (63%) 2014/09/17 08:11:38 ossec-agent: INFO: Event count after '20000': 13083081->8306056 (63%) 2014/09/17 08:11:49 ossec-agent: INFO: Event count after '20000': 13072336->8298736 (63%) 2014/09/17 08:11:54 ossec-agent(1218): ERROR: Unable to send message to server. 2014/09/17 08:12:00 ossec-agent: INFO: Event count after '20000': 13085096->8306832 (63%) 2014/09/17 08:12:10 ossec-agent: INFO: Event count after '20000': 13055854->8284704 (63%) 2014/09/17 08:12:19 ossec-agent: INFO: Event count after '20000': 13077283->8301280 (63%) 2014/09/17 08:12:30 ossec-agent: INFO: Event count after '20000': 13080064->8302520 (63%) Thanks for your help in this problem Regards! Juan C. Ruiz. -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
