Snort mailing list archives

Previous By Date Next
Previous By Thread Next

[Snort+] Can't get log-file to generate

From: Donald Hoskins via Snort-devel <snort-devel () lists snort org>
Date: Mon, 11 May 2020 02:18:10 -0400
I have installed Snort+, runs as a service, but i cannot get it to drop a
log file..

Here is the cmd I'm calling:

snort -Q -v -c /etc/snort/snort.lua --daq-dir /usr/lib/daq --daq afpacket
-i eth0:br-lan -l /tmp/log -A alert_fast -D

...
...

afpacket DAQ configured to inline.
initializing daemon mode
child process is 13348
Commencing packet processing
++ [0] eth0:br-lan
root@OpenWrt:/etc/snort# [11763.319582] device eth0 entered promiscuous mode

It appears to be working, but nothing ever shows up in /tmp/log (and it
does exist).  I'm sure it's something simple, but I appear to be missing it.

Thanks!

_______________________________________________
Snort-devel mailing list
Snort-devel () lists snort org
https://lists.snort.org/mailman/listinfo/snort-devel

Please visit http://blog.snort.org for the latest news about Snort!
Previous By Date Next
Previous By Thread Next

Current thread: