Unified2 file problem in Windows server 2012

["Asad, Hafiz ul" <Hafiz-ul.Asad () city ac uk>]

Hi,


I am trying to generate snort.u2 file while running snort in windows server 2012. I am using barnyard2 in cygwin and 
it's running fine. The problem is that for some reason, when I try to run snort by the command


> > > snort -q -c C:\snort\snort.conf -i 1


snort always generates "snort.log.xxxx" in the "C:\snort\log" directory. I have the following line uncommented in the 
"snort.conf" file,


output unified2: filename snort.u2, limit 128


but it seems this is bypassed by snort.


Can anyone help with this please so that I get a snort.u2.xxxx file in the C:\snort\log directory.


regards

asad




Hafiz ul Asad

Research Assistant

Canter for Software Reliability

School of Mathematics,  Computer Science & Engineering

City University London, EC1V 0HB London

Tel : +44 (0) 20 7040 8422

------------------------------------------------------------------------------
Transform Data into Opportunity.
Accelerate data analysis in your applications with
Intel Data Analytics Acceleration Library.
Click to learn more.
http://pubads.g.doubleclick.net/gampad/clk?id=278785231&iu=/4140

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!