Snort log is blank

[Michael Iaconianni <michael.iaconianni () iaspecialists com>]

Hello,

I’m trying to run snort as an IDS. I use the following command to run snort:
snort -Q --daq nfq --daq-var device=br-lan  --daq-var queue=1 -c /etc/snort/snort.conf -l log/ -D
However, when I check the log it is blank. When I try to read it with snort –r <logname> I get the following output

Error can’t initialize DAQ cap (-1) - truncated dump file; tried to read 4 file header bytes, only got 0. I’m guessing 
theres a problem with my config file. Any help would be greatly appreciated!

Thank you,
Mike

------------------------------------------------------------------------------

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!