{"id":38,"date":"2007-10-10T20:45:29","date_gmt":"2007-10-10T19:45:29","guid":{"rendered":"http:\/\/www.lightsoft.se\/_lightsoft\/?p=38"},"modified":"2008-02-23T16:49:01","modified_gmt":"2008-02-23T15:49:01","slug":"snortsam-with-mrtg","status":"publish","type":"post","link":"https:\/\/www.lightsoftai.com\/?p=38","title":{"rendered":"Snortsam with MRTG"},"content":{"rendered":"<p>Title: <strong>SnortsamStat<\/strong><br \/>\nVersion: <strong>0.1<\/strong><br \/>\nLicense: GNU<br \/>\nRequirements: Linux\/Unix<br \/>\nCode: Java<\/p>\n<p>This SnortsamStat is used to produce stats for MRTG based on the logfiles SnortSam produce.<br \/>\nWhen using Snort with snortsam, it will produce some blocks and bans and this will be fetched from the log (alerts, counts).<br \/>\nThis is not made with performance in mind, just to fetch out the data needed for MRTG to produce nice graphs.<\/p>\n<p><strong>Needed<\/strong><br \/>\nsnort.sh file at the same place as the SnortsamStat.class<br \/>\nIt will use the file to access db for the alerts.<\/p>\n<p><strong>How to run<\/strong><br \/>\nExample: java SnortsamsStat \/var\/log\/snortsam.log<\/p>\n<p>An mrtg.cfg could look like this:<br \/>\n<code lang=\"csharp\"><br \/>\nTarget[localhost.snort]: `cd \/root\/mrtg\/; java SnortsamStat \/var\/log\/snortsam.log`<br \/>\nMaxBytes[localhost.snort]: 100<br \/>\nTitle[localhost.snort]: Snort<br \/>\nPageTop[localhost.snort]: <H1>Snort<\/H1><br \/>\nYLegend[localhost.snort]: Alerts (min)<br \/>\nLegendI[localhost.snort]: Alerts (min)<br \/>\nLegendO[localhost.snort]: Blocked Hosts<br \/>\nLegend1[localhost.snort]: Incoming Alerts<br \/>\nLegend2[localhost.snort]: Blocked Hosts<br \/>\nOptions[localhost.snort]: nopercent,growright,gauge<br \/>\nShortLegend[localhost.snort]: &nbsp;hits<br \/>\n<\/code><\/p>\n<p><strong>Download: <a href=\"http:\/\/www.lightsoft.se\/_lightsoft\/wp-content\/uploads\/software\/SnortsamStat_v0.1.zip\" count=\"1\">Snortsam MRTG<\/a><\/strong><\/p>\n<p><!--adsense--><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Title: SnortsamStat Version: 0.1 License: GNU Requirements: Linux\/Unix Code: Java This SnortsamStat is used to produce stats for MRTG based on the logfiles SnortSam produce. When using Snort with snortsam, it will produce some blocks and bans and this will be fetched from the log (alerts, counts). This is not made with performance in mind, [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[24],"tags":[],"class_list":["post-38","post","type-post","status-publish","format-standard","hentry","category-snortsamstat"],"_links":{"self":[{"href":"https:\/\/www.lightsoftai.com\/index.php?rest_route=\/wp\/v2\/posts\/38","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.lightsoftai.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.lightsoftai.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.lightsoftai.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.lightsoftai.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=38"}],"version-history":[{"count":0,"href":"https:\/\/www.lightsoftai.com\/index.php?rest_route=\/wp\/v2\/posts\/38\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.lightsoftai.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=38"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.lightsoftai.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=38"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.lightsoftai.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=38"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}