[Snort-users] Log output format

Chris Green cmg at ...671...
Thu Feb 7 11:42:04 EST 2002


"Michael Wyraz" <evermind at ...4907...> writes:

> Hi!
>
> Thank you. this works fine.
> I wonder why the log output in the ip-sub-dirs is so much different from that
> which is written in the alerts file.

Thats much more of a stream log view which is a lot slower to
produce.  -A fast -b is what lots of people use when they are
concerned about speed and then produce the verbose log stuff from the
binary pcap logs

-- 
Chris Green <cmg at ...671...>
This is my signature. There are many like it but this one is mine.




More information about the Snort-users mailing list