[Bro] Worker nodes logs
Mike Waite
mfw113 at psu.edu
Wed Sep 1 18:25:08 PDT 2010
This was do a dumb mistake on my proxy's firewall. I have allowed ports 47760 and 47761 thru and I am now seeing the results I was expecting.
Now to get the other 12 worker nodes set up...
Is there any documentation related to the Cflow headend and capstats working together as eluded to some of the config files?
Thanks again
Michael Waite
Enterprise Security Analyst
Enterprise Information Privacy and Security Services (EIPSs)
Security Operations and Services (SOS)
Information Technology Services (ITS)
The Pennsylvania State University (PSU)
Direct Telephone: 814-865-2297
ITS-SOS Telephone: 814-863-9533
ITS-SOS E-Mail: security at psu.edu
On 8/28/10 5:59 PM, Robin Sommer wrote:
>
> On Sat, Aug 28, 2010 at 11:59 -0400, you wrote:
>
>> I am not seeing any of the logs from the worker nodes on the manger
>> node in the Log dir.
>
> That's intentional, the workers' logs are discarded upon rotation.
> What information in there would you like to see archived?
>
> Robin
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 551 bytes
Desc: OpenPGP digital signature
Url : http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20100901/047ee9d9/attachment.bin
More information about the Bro
mailing list