-
Notifications
You must be signed in to change notification settings - Fork 287
Logrotate
Peter Manev edited this page May 7, 2015
·
8 revisions
There is also automatic log rotation implemented in /etc/logrotate.d/suricata
/var/log/suricata/eve.json {
daily
rotate 30
olddir /var/log/suricata/StatsByDate/
compress
missingok
notifempty
dateext
copytruncate
}
That would logrotate eve.json every day and would keep max 30 days old logs.You can use the example above for any other log file you would like to logrotate. More info about logrotate.