On Fri, Jun 17, 2016 at 5:27 AM, Tahir Hafiz <
tahir...@gmail.com> wrote:
> Thanks. I am seeing this in the alerts.log for the ones not connecting, I
> mean they seem to be able to connect in network terms but not the OSSEC
> server instance process:
> ossec-remoted(1408): ERROR: Invalid ID for the source ip: 'a.b.c.d'.
> ossec-remoted(1213): WARN: Message from a.b.c.d not allowed.
>
> Is there something we are not doing to allow these particular agents to
> connect - a key file etc?
>