Search found 3 matches
- Mon Jul 22, 2019 4:58 am
- Forum: OSSEC
- Topic: How to extract IP from Log
- Replies: 4
- Views: 7854
Re: How to extract IP from Log
OSSEC HIDS v3.3.0 - OSSEC Foundation
- Mon Jul 15, 2019 3:15 am
- Forum: OSSEC
- Topic: How to extract IP from Log
- Replies: 4
- Views: 7854
Re: How to extract IP from Log
Hi support
Thanks for your help. By my default ossec-server installation the "decoders.d" folder is missing. How to tell ossec to use decoders from this folder?
regards
almi support
Thanks for your help. By my default ossec-server installation the "decoders.d" folder is missing. How to tell ossec to use decoders from this folder?
regards
almi support
- Mon Jul 01, 2019 6:01 am
- Forum: OSSEC
- Topic: How to extract IP from Log
- Replies: 4
- Views: 7854
How to extract IP from Log
Hi All Is there a way to extract the IP from the remote address in this Log-example to block it in a rule? <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< Rule: 1002 fired (level 2) -> "Unknown problem somewhere in the system." Portion of the log(s): {"reqId":"D...