anybody knows how to install & configure Firegen for Snort splunk?
in this case, I have 2 different servers, where Snort is separate from Splunk Server.
Snort Dedicated server: 192.168.1.89
Splunk Server: 192.168.1.113
in readme.txt file, developers said.. he has a case where Splunk & Snort is on the same server, it's because he used Splunk DB Connect App to get log data from snort DB (MySQL).
So, what I want to ask, can I use a method that is almost the same but different server?
Please.. help me, every help would be appreciated
... View more