Snare Log
Starting from Snare v5.3.3 following GUI page is added, called Snare Log. This page is aiming to assist in real-time troubleshooting of Snare Agent operation. All these log messages are also sent to file/network destination(s) as ‘HeartBeat’ messages.
This page shows the last 1000 agent log messages as per the log level selected on the “Heartbeat & Agent Log” page. ERROR and FATAL log messages are cleared every 10 minutes, whereas all other log messages are cleared as per Agent Heartbeat Frequency; set on “Heartbeat & Agent Log” page. If Heartbeat is disabled then these messages can be cleared any time.
A new feature to this page is added from Snare v5.6; where Epilog can be configured to generate the debug log at run time time. The debug log is run for a specific period of time. See the Appendix C - Debug Logs if debug log needs to be run for longer period of time.