[Snort-users] starting

Erek Adams erek at ...577...
Sat Sep 22 09:21:02 EDT 2001


On Sat, 22 Sep 2001, Greg Sarsons wrote:

> Is there a way to start snort and just tell it log to a binary file from
> the command line without a rules file?  I just want to capture to a
> binary file.

Yeppers!

> I've tried
>
> snort -b -i eth0  no go with this or even
> snort -b -i eth0 -D no go as well.
>
> All I would like is a start snort collecting traffic, put it in the
> backgroup, and then once a day restart with a new log.

Just add a '-l <wherever you want to log to>' onto the command line.

> Tks to Erek's suggestion I'll be using SIGUSR1 to get the statistics
> about the capture.

:)

-----
Erek Adams
Nifty-Type-Guy
TheAdamsFamily.Net






More information about the Snort-users mailing list