Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: snort version 2.4.3 not working properly?

From: Dirk Geschke <Dirk_Geschke () genua de>
Date: Mon, 21 Nov 2005 17:51:22 +0100
Hello,
    I'm running version 2.4.3 of snort and here's the issue.

Observe the following...

snort-2.4.3 is what we have the latest.
# pwd
/usr/local/src/snort-2.4.3/src
ids1# ./snort -de -l temp -r /var/log/snort/tcpdump.log.1132578001
Running in packet logging mode
Log directory = temp
TCPDUMP file reading mode.
Reading network traffic from "/var/log/snort/tcpdump.log.1132578001" file.
snaplen = 1514
---REST OF OUTPUT OMMITED as there is not seem to be a problem-


maybe you should read it instead of omitting? There should be a line like:

  The default logging mode is now PCAP, use "-K ascii" to activate 
  the old default logging mode.

Starting with 2.4.1 the default is to use a pcap file, not the ascii as you
observe with 2.4.0 and before...

Best regards

Dirk



-------------------------------------------------------
This SF.Net email is sponsored by the JBoss Inc.  Get Certified Today
Register for a JBoss Training Course.  Free Certification Exam
for All Training Attendees Through End of 2005. For more info visit:
http://ads.osdn.com/?ad_id=7628&alloc_id=16845&op=click
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: