Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Is there a way to generate an email from a signature ID AND the direction (in->out)The "in" and "out" fields (source location and destination location) do not seem available through Event Rules.Thanks,Peter
The certificate on our VMS server has expired. I created a new using the "gencert" program, but when I try and push a sig update to the sensor, it still picks up the old certificate. I need to delete that one but there is no doc on it.Thanks,Peter
Exactly how did you get the sensor to generate syslog messages?I added the syslog server to the truster hosts, but I don't see any port 514 traffic leaving the sensor (I used tcpdump.)Are the syslog messages coming directly from the sensor or the VMS...
1 thing to check is to run an "audit log" report from the management center.We had this problem too and it turned out that the certificate had expired on the system.If that is the case, do a "no tls trusted host x.x.x.x," the regenerate the tls key, ...
