I have been working on setting up Snort,Barnyard2 and Base.

1.Snort is currently logging in the unified2 format.

2.Barnyard2 is reading the logs and successfully inserting stuff into MySQL.
(I confirmed this using the standard "select count(*) from events;" Please let me know if my         assumption is wrong)

3.Base can insert into the database (can create a user through the Base gui), also when I hit the update alert cache button, I see the total events being updated.

I still do not see any alerts on the main page. TCP,UDP and ICMP traffic still say 0,0,0 resp.

Can anyone help fixing this please.

Thanks,
/$m