i install latest version of snort and rules from snort.org on windows server 2012 R2 with Kiwi syslog (solarwinds) .
i configure snort.conf with my data and everything i think is ok , (No error)
first i try to send(output) log to kiwi with this command in configure file :
output alert_syslog: host=127.0.0.1:514, LOG_AUTH LOG_ALERT
and nothing happens
then try with this command
output alert_fast: alerts.ids
again nothing happens
i run snort with two different command
snort -A console -i1 -c c:\Snort\etc\snort.conf -l c:\Snort\log -K ascii
snort -i1 -s -l c:\snort\log\ -c c:\snort\etc\snort.conf
what is my problem ?
this is link my configuration file ( snort.conf )
if you need i can upload file any where you wants.