vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-19 07:43:01 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
ntopng/tests/syslog
History
Exact
Alfredo Cardigliano 083eef8a32 Update NGI log format. Improve alert rendering.
2021-04-07 15:04:23 +02:00
..
ngi_trust.log Update NGI log format. Improve alert rendering. 2021-04-07 15:04:23 +02:00
README.test README update (no need to setup rsyslog) 2021-03-10 11:59:01 +01:00
suricata.log Old tests cleanup 2021-02-02 14:11:30 +01:00

README.test 

Suricata Test
-------------

The suricata.log file contains sample syslog output from Suricata,
it can be used to test the Suricata log ingestion in ntopng.

As first step please configure ntopng as explained in the user's
guide at:

  https://www.ntop.org/guides/ntopng/advanced_features/suricata.html?highlight=suricata#ntopng-configuration

Example for the impatient:

  ntopng -i syslog://127.0.0.1:9999

As second step, use netcat to replay the log to the configured
port of the ntopng host:

  cat suricata.log | netcat 127.0.0.1 9999

The sample log file contains both flows and alerts (e.g. an alert
about a trojan AlienSpy RAT is present).