Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Is that ok to use tcpdump 4.0 for snort on Centos 6.5

From: waldo kitty <wkitty42 () windstream net>
Date: Mon, 21 Jul 2014 16:37:51 -0400
On 7/21/2014 10:33 AM, Jutichai Thongkrachai wrote:

Hello,

I am newbie for Snort. I set up Snort 2.9.6 as  this guide for CentOS:
https://www.snort.org/documents/4

In this guide,William said Snort require tcpdump 4.1+ but the latest update of
tcpdump is 4.0.0.3 for CentOS 6.5.


Is that ok to use tcpdump 4.0 for Snort 2.9.6?


you need to be more specific... AFAIK, tcpdump is an external tool used to 
capture and read pcap files... what is your use of tcpdump with snort? i looked 
at the referenced document and see only where they mention that you can use it 
to read the snort.log.xxxxxxxxxxxxxx pcap files... outside of that, it is not 
required...

-- 
  NOTE: No off-list assistance is given without prior approval.
        Please *keep mailing list traffic on the list* unless
        private contact is specifically requested and granted.

------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!
Previous By Date Next
Previous By Thread Next

Current thread: