how to create ARCHIVE database through BASE

BASE-user
2007-12-17
2013-06-03
  • gilbert_raja
    gilbert_raja
    2007-12-17

    Hai all i have successfully setup SNORT/MYSQL/BASE. and im getting alerts from BASE screen. Now i have to archive 30 days logs into separate DB called my its name. For example. jan-archives , feb-archeives like that. I have enabled archive Database when i installed BASE. Now how can i move the current DB to archive DB through the BASE application?

     
    • gilbert_raja
      gilbert_raja
      2007-12-17

      im using version 1.3.8

       
    • kryptikET
      kryptikET
      2007-12-21

      all you need to do is select the alerts you want to archive by putting a check next to them, and then use the the drop down {action} menu at the bottom of the page to archive the alerts.  Select either Archive Alerts (copy) or Archive Alerts (move), the click the appropriate button (e.g. Selected).

      If you want a backend procedure there is a perl script that you can install on your SQL server called archivePlus.pl.  That will allow you to archive all alerts depending on the cut-off date you provide.