[Snort-users] barnyard (Payload)

Jens Krabbenhoeft tschenz-snort-users at ...7018...
Wed Oct 16 06:20:09 EDT 2002


Hi Alwin,

> in my snort.conf
> output log_unified: filename snort.log, limit 128
                               ^^^^^^^^^

> and I started by barnyard with
> barnyard  -c /etc/snort/barnyard.conf \
>     -d /var/log/snort -g /etc/snort/gen-msg.map \
>     -s /etc/snort/sid-msg.map -f scan.log
                                   ^^^^^^^^

Those two filenames have to be the same.

HTH,

	Jens




More information about the Snort-users mailing list