Re: [Snort-inline-users] MYSQL help

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

> First of all you don't really want to use snort_inline to log directly
to
> a
> MYSQL database from snort_inline.  If snort/snort_inline loses
connection
> to
> a database, the process terminates, which may be acceptable for passive
mode, but not ok for InlineMode();  Use barnyard + snort unified logging
to
> log to your database.
>

  Also, adding the --with-mysql flag during build time does not create the
DB or setup the table structure.  I believe there is (or used to be) a
MYSQL readme file included in docs that describes how to setup your
database structure.

Nick Rogness <ni...@ro...>