Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Unified2 format

From: Jaime Nebrera <jnebrera () gmail com>
Date: Wed, 22 Feb 2012 17:34:01 +0100
   Hi all,

   I have been discussing this in the snort user list, but the 
conclusion we have reached is that this seems not currently available.

   I would like to know if it is possible to include as part of the 
"alert" produced by snort the physical interface it came from. This 
information seems available to snort in the DAQ_PktHdr_t variable, but 
seem is not currently exploited by the logging system.

   May I ask if this assumption is correct? Is something that is 
available if activated in some "hidden" config directive? :D

   Kind regards

------------------------------------------------------------------------------
Virtualization & Cloud Management Using Capacity Planning
Cloud computing makes use of virtualization - but cloud computing 
also focuses on allowing computing to be delivered as a service.
http://www.accelacomm.com/jaw/sfnl/114/51521223/
_______________________________________________
Snort-devel mailing list
Snort-devel () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-devel

Please visit http://blog.snort.org for the latest news about Snort!
Previous By Date Next
Previous By Thread Next

Current thread: