I’m hoping this is something that is from a simple misconfig. The eve.json has some ODD content and when I run tail -f and looking for incoming ALERTS etc, nothing but the odd conent comes in. The log file and suricata.yaml is attached.
Appreciate any help / suggestions.
suricata.yaml (73.6 KB)
eve.json (87.7 KB)