Register

Forgot Password

Site FAQ

Home > IT Answers > Security > Arcsight Question

Arcsec09

5 pts.

Arcsight Question

ArcSight, Data analysis, Snort

Does anyone have any experience with configuring ArcSight and Snort so that ArcSight can pull the payload information from the Snort sensor?

Software/Hardware used:

ASKED: December 23, 2008 4:17 PM

UPDATED: January 22, 2009 11:02 PM

RELATED QUESTIONS

Answer Wiki:

Hello! I had worked in the past on ArcSight Installation/Configuration/Management, and Yes, you can configure the Manager to Pull the logs from the Snort, you will need to have physical access and password and snort.conf details as well , also, you need to configure the SmartAgents, and select the "Snort Database" and finally you will need the MySQL DB password and username from the snort.conf handy in order to get it running. u can refer to the technical documentation. if u need any help please email me at:- nitin.blackhat[at]gmail.com

Last Wiki Answer Submitted: January 22, 2009 11:02 pm by Blackhat

15 pts.

All Answer Wiki Contributors: Blackhat

15 pts.

To see all answers submitted to the Answer Wiki: View Answer History.

RSS - Discussions Help

Discuss This Question:

_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

Ask a Question

Browse IT Answers by Topic

>>VIEW ALL TAGS

Community Blog | About Us | Contact Us | FAQ | Terms of Use | DMCA Policy

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organization's IT projects - with its network of technology-specific Web sites, events and magazines.
All Rights Reserved, Copyright 1999-2013, TechTarget | Read our Privacy Policy
Questions and Answers Index 1 | Questions and Answers Index 2 | IT Topics Index 1 | IT Topics Index 2 | Blogs Index | Blogs Tags