I am running Snort 2.9.11.1 on Ubuntu server. I have also installed BASE and barnyard2. When I run snort, I see snort.u2.nnnnn files being generated (not empty). I run barnyard2 as such:
sudo barnyard2 -c /etc/snort/barnyard2.conf -d /var/log/snort -f snort.u2 -w /var/log/snort/barnyard2.bookmark -g snort -u snort -v
Output:
Running in Continuous mode
Barnyard2 spooler: Event cache size set to [2048]
Log directory = /var/log/barnyard2
INFO database: Defaulting Reconnect/Transaction Error limit to 10
INFO database: Defaulting Reconnect sleep time to 5 second
Yet I do not see new events being generated in the BASE interface.
I am running Snort 2.9.11.1 on Ubuntu server. I have also installed BASE and barnyard2. When I run snort, I see snort.u2.nnnnn files being generated (not empty). I run barnyard2 as such: sudo barnyard2 -c /etc/snort/barnyard2.conf -d /var/log/snort -f snort.u2 -w /var/log/snort/barnyard2.bookmark -g snort -u snort -v Output: Running in Continuous mode
Initializing Input Plugins! Initializing Output Plugins! Parsing config file "/etc/snort/barnyard2.conf"
+[ Signature Suppress list ]+
+[No entry in Signature Suppress List]+
+[ Signature Suppress list ]+
Barnyard2 spooler: Event cache size set to [2048] Log directory = /var/log/barnyard2 INFO database: Defaulting Reconnect/Transaction Error limit to 10 INFO database: Defaulting Reconnect sleep time to 5 second
Yet I do not see new events being generated in the BASE interface.