[Snort-users] logging question

jan at ...206... jan at ...206...
Fri May 25 09:59:51 EDT 2001


> is there anyway to have the alert also dump the hex
> packet/datagram as
> well
> like I get in standard output when I issue the snort command
> "snort -vv -i eth0 -X", for example:

could it be you're talking about the -d command line switch ( -d
for dump)...? Gives you dumps of all the alert-triggering
packets in a dir named after the relevant source address. 

Cheers, Jan
Radio HUNDERT,6 Medien GmbH Berlin
- EDV -
j.muenther at ...206...

More information about the Snort-users mailing list