OSSIM - Snort/OSSEC/Nagios Logging Config Question

Posted by Eric on Server Fault See other posts from Server Fault or by Eric
Published on 2009-08-26T20:54:35Z Indexed on 2010/04/03 22:03 UTC
Read the original article Hit count: 604

Filed under:
|
|
|

Quick n00b OSSIM question. I've looked around but haven't found exactly what I'm looking for. I currently have a Nagios, OSSEC, Nessus, and Snort server and I want to keep those servers active but just ship the logs to the OSSIM server and have it do the correlating and graphing. Can that be done? Everything I've seen is putting the various software functions actually on the OSSIM box but I don't want to do that. I'm running CentOS on all of the systems. Thanks.

© Server Fault or respective owner

Related posts about security

Related posts about logging