[Snort-users] extracting tcpdump data

rmulyadi at ...7859... rmulyadi at ...7859...
Tue Dec 31 11:06:02 EST 2002


I am trying to use snort to preprocess tcpdump file.  For the tcp packets,
I wanna be able to extract the connection level information about the network
traffic (e.g. start time, duration, participating hosts and ports, etc.).
 Any comments or sample rules are very appreciated.
Thanks,
Rusma





More information about the Snort-users mailing list