Snort mailing list archives
Re: snort version 2.4.3 not working properly?
From: Dirk Geschke <Dirk_Geschke () genua de>
Date: Mon, 21 Nov 2005 17:51:22 +0100
Hello, I'm running version 2.4.3 of snort and here's the issue. Observe the following... snort-2.4.3 is what we have the latest. # pwd /usr/local/src/snort-2.4.3/src ids1# ./snort -de -l temp -r /var/log/snort/tcpdump.log.1132578001 Running in packet logging mode Log directory = temp TCPDUMP file reading mode. Reading network traffic from "/var/log/snort/tcpdump.log.1132578001" file. snaplen = 1514 ---REST OF OUTPUT OMMITED as there is not seem to be a problem-
maybe you should read it instead of omitting? There should be a line like: The default logging mode is now PCAP, use "-K ascii" to activate the old default logging mode. Starting with 2.4.1 the default is to use a pcap file, not the ascii as you observe with 2.4.0 and before... Best regards Dirk ------------------------------------------------------- This SF.Net email is sponsored by the JBoss Inc. Get Certified Today Register for a JBoss Training Course. Free Certification Exam for All Training Attendees Through End of 2005. For more info visit: http://ads.osdn.com/?ad_id=7628&alloc_id=16845&op=click _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- snort version 2.4.3 not working properly? Allan P. Magmanlac (Nov 21)
- Re: snort version 2.4.3 not working properly? Dirk Geschke (Nov 21)