1. Describe your incident:
After a fresh installation of Graylog 6 and Snort 3, I would like to add the Snort alert messages to Graylog. I tried to follow some tutorials like github - Graylog2 - graylog-guide-snort but it seems the configuration mentionned is not for Graylog 6.
So, my question is quite simple: how to configure Graylog to “listen” Snort alerts?
2. Describe your environment:
-
OS Information: CentOS 9
-
Package Version: Graylog 6
-
Service logs, configurations, and environment variables:
3. What steps have you already taken to try and solve the problem?
I tried to apply the configuration mentionned in : GitHub - Graylog2/graylog-guide-snort: How to send structured Snort IDS alert logs into Graylog
4. How can the community help?
Explain me how to configure Graylog to listen Snort messages
Thank you
Helpful Posting Tips: Tips for Posting Questions that Get Answers [Hold down CTRL and link on link to open tips documents in a separate tab]