barnyard2 periodically stops writing events in the database

[skydevil56]

Hello! I have the following configuration: OS: Debian 7 (x64); IDS: Suricata 2.0.6 RELEASE; Barnyard2: Version 2.1.14 (Build 336); DB: MySQL (Ver 14.14 Distrib 5.5.41); My problem is this: barnyard2 periodically stops writing events in the database. I have the following messages in the file daеmon.log:

Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x2896e20] Event Type 72acket [0x0], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x0] Event Type 0acket [0x54f4a20], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x28770a0] Event Type 72acket [0x0], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x0] Event Type 0acket [0x54f4a20], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x2877130] Event Type 72acket [0x0], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x0] Event Type 0acket [0x54f4a20], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x28771c0] Event Type 72acket [0x0], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x0] Event Type 0acket [0x54f4a20], information has not been outputed. Apr 26 18:58:27 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x28b3e50] Event Type 72acket [0x0], information has not been outputed. Apr 26 18:58:27 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x0] Event Type 0acket [0x54f4a20], information has not been outputed.

Please help me understand is that there is a cause of my problem. Thank you.

[binf]

//----------LEGACY, type '72' typedef struct Unified2IDSEventIPv6_legacy Wont be outputed but that does not mean it wont continue to write other events to the database.

On Mon, Apr 27, 2015 at 6:19 AM, Sky560 [email protected] wrote:

Hello! I have the following configuration: OS: Debian 7 (x64); IDS: Suricata 2.0.6 RELEASE; Barnyard2: Version 2.1.14 (Build 336); DB: MySQL (Ver 14.14 Distrib 5.5.41); My problem is this: barnyard2 periodically stops writing events in the database. I have the following messages in the file daеmon.log:

Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x2896e20] Event Type 72 http://Packet [0x0], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x0] Event Type 0 http://Packet [0x54f4a20], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x28770a0] Event Type 72 http://Packet [0x0], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x0] Event Type 0 http://Packet [0x54f4a20], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x2877130] Event Type 72 http://Packet [0x0], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x0] Event Type 0 http://Packet [0x54f4a20], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x28771c0] Event Type 72 http://Packet [0x0], information has not been outputed. Apr 26 18:57:45 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x0] Event Type 0 http://Packet [0x54f4a20], information has not been outputed. Apr 26 18:58:27 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x28b3e50] Event Type 72 http://Packet [0x0], information has not been outputed. Apr 26 18:58:27 sterragate barnyard2[2990]: WARNING database [Database()]: Called with Event[0x0] Event Type 0 http://Packet [0x54f4a20], information has not been outputed.

Please help me understand is that there is a cause of my problem. Thank you.

— Reply to this email directly or view it on GitHub https://github.com/firnsy/barnyard2/issues/145.