# Created by SNBForums user @ttgapers
# log all suricata logs to suricata.log

destination d_suricata { 
    file("/opt/var/log/suricata.log");
};

filter f_suricata {
    program("S82suricata") or
    program("suricata");
};

log {
    source(src);
    filter(f_suricata);
    destination(d_suricata);
    flags(final);
};

#eof