Snort mailing list archives
Re: Log all traffic?
From: Mark Nipper <nipsy () tamu edu>
Date: Wed, 5 Nov 2003 16:43:23 -0600
On 05 Nov 2003, nick travis wrote:
Is there a rule for snort to log all network traffic. I need to dump it all into a database and query it for bandwidth usage by certain hosts.
I think you're better off using tcpdump or ethereal for something like this. -- Mark Nipper e-contacts: Computing and Information Services nipsy () tamu edu Texas A&M University http://ops.tamu.edu/nipsy/ College Station, TX 77843-3142 AIM/Yahoo: texasnipsy ICQ: 66971617 (979)575-3193 MSN: nipsy () tamu edu -----BEGIN GEEK CODE BLOCK----- GG/IT d- s++:+ a- C++$ UBL+++$ P--->+++ L+++$ E--- W++ N+ o K++ w(---) O++ M V(--) PS+++(+) PE(--) Y+ PGP++(+) t 5 X R tv b+++ DI+(++) D+ G e h r++ y+(**) ------END GEEK CODE BLOCK------ ---begin random quote of the moment--- "...now I am become Death [Shiva]. the destroyer of worlds..." -- J. Robert Oppenheimer on 16 July 1945 at 0529 Mountain War Time in the Jornada del Muerto desert near the Trinity site in the White Sands Missile Range quoting from the Bhagavad-Gita upon witnessing the first atomic detonation by mankind. The quote from the Bhagavad-Gita: If the radiance of a thousand suns Were to burst at once in the sky That would be like the splendor of the Mighty one... I am become Death, The shatterer of Worlds. ----end random quote of the moment---- ------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. Does SourceForge.net help you be more productive? Does it help you create better code? SHARE THE LOVE, and help us help YOU! Click Here: http://sourceforge.net/donate/ _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Log all traffic? nick travis (Nov 05)
- Re: Log all traffic? Mark Nipper (Nov 05)
- Re: Log all traffic? Matt Kettler (Nov 05)
- Re: Log all traffic? jon baer (Nov 05)
- Re: Log all traffic? Sp0oKeR Labs (Nov 06)
- Re: Log all traffic? Matt Kettler (Nov 05)
- Re: Log all traffic? Matt Kettler (Nov 05)
- Who doesn't care about virus rules, and why? kenw (Nov 05)
- <Possible follow-ups>
- Re: Log all traffic? Mark . Schutzmann (Nov 05)
- Re: Log all traffic? Mark Nipper (Nov 05)