So every time I see a log in the /var/ossec/log/alerts/alerts.log I should see something being dumped correct? Because right now I see alerts.log getting bigger and still nothing on tcpdump.
On Thursday, September 1, 2016 at 10:18:07 AM UTC-4, Olivier Doisneau wrote: > > So I changed my ossec.conf to have this: > > <syslog_output> > > <server>127.0.0.1</server> > > <port>8089</port> > > <format>default</format> > > </syslog_output> > > > and /var/ossec/bin/ossec-*csys*logd > > is started. But I don't see any attempts to push the logs coming in to > syslog in the ossec.log file. > > > Thanks > -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
