[Snort-devel] Fwd: Error in log file of Snort

Ajay Khadpe khadpeajay797 at ...2499...
Fri Jan 15 05:00:30 EST 2016


 I have configures snort into inline mode with DAQ as NFq. I am able to
drop packets also. But logs that generated are showing error.

Following is sample of error:

snort -r /var/log/snort/snort.log.1294747044
> Running in packet dump mode
>         --== Initializing Snort ==--
> Initializing Output Plugins!
> pcap DAQ configured to read-file.
> ERROR: Can't initialize DAQ pcap (-1) - bad dump file format
> Fatal Error, Quitting..

Please see attached configuration file and tell me how I will avoid this

Thanks & Regards
 Khadpe Ajay

Thanks & Regards
 Khadpe Ajay
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-devel/attachments/20160115/00db28e3/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: snort.conf
Type: application/octet-stream
Size: 28316 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-devel/attachments/20160115/00db28e3/attachment.obj>

More information about the Snort-devel mailing list