[Os-sim-support] Problem with Cisco Pix

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi guys,

I performed a OSSIM 2.2 fresh installation, with no cards at promisc mode. I
needed to feed it with CISCO PIX logs.
So I redirected those logs using syslog (UDP:514), to the ossim server I
just installed. Running TCPdump on the server shows that those logs are
indeed recieved by the OSSIM server. I activated cisco-pix pluguin using
(only) ossim-setup on the server side.

Back to the web frontend, events from CISCO-Pics are not pouring in :(

Am I missing something here? Does the plugin need more configuration? Do I
need to send the syslog traffic throught another port/protocol? Do I need to
add the CISCO Pix to the assets list or something?

Please help
-- 
Kind regards

Houcem HACHICHA

[Os-sim-support] Problem with Cisco Pix

Open Source SIEM

[Os-sim-support] Problem with Cisco Pix