Menu
▾
▴
[Os-sim-support] Problem with Cisco Pix
|
From: Houcem H. <hou...@gm...> - 2010-06-23 19:01:42
|
Hi guys, I performed a OSSIM 2.2 fresh installation, with no cards at promisc mode. I needed to feed it with CISCO PIX logs. So I redirected those logs using syslog (UDP:514), to the ossim server I just installed. Running TCPdump on the server shows that those logs are indeed recieved by the OSSIM server. I activated cisco-pix pluguin using (only) ossim-setup on the server side. Back to the web frontend, events from CISCO-Pics are not pouring in :( Am I missing something here? Does the plugin need more configuration? Do I need to send the syslog traffic throught another port/protocol? Do I need to add the CISCO Pix to the assets list or something? Please help -- Kind regards Houcem HACHICHA |
