Wednesday, November 13, 2013

How to follow AlienVault OSSIM with Zabbix ?


During Zabbix games, one of the things that I learned was how to monitor my AlienVault OSSIM system.

By default OSSIM is tracing and auditing all the traffic by its own firewall. You should open the correct port on the firewall.

# vi /etc/ossim/firewall_include

-A INPUT -p tcp -m state --state NEW -m tcp --dport 10050 -j ACCEPT

# ossim-reconfig


No comments:

Post a Comment