OSSIM - Snort/OSSEC/Nagios Logging Config Question
Posted
by Eric
on Server Fault
See other posts from Server Fault
or by Eric
Published on 2009-08-26T20:54:35Z
Indexed on
2010/04/03
22:03 UTC
Read the original article
Hit count: 604
Quick n00b OSSIM question. I've looked around but haven't found exactly what I'm looking for. I currently have a Nagios, OSSEC, Nessus, and Snort server and I want to keep those servers active but just ship the logs to the OSSIM server and have it do the correlating and graphing. Can that be done? Everything I've seen is putting the various software functions actually on the OSSIM box but I don't want to do that. I'm running CentOS on all of the systems. Thanks.
© Server Fault or respective owner