[Snort-users] Trouble reading snort.log.*

Jacques jbrierre at ...163...
Sun Apr 13 22:04:06 EDT 2003


Is it my imagination, or did I use to be able to dump snort.log with 
tcpdump ?

Using snort-2.0.0rc4

[localhost:/var/log/snort] root# tcpdump -f snort.log.1050279226
tcpdump: parse error
[localhost:/var/log/snort] root#

snort.conf:
    output alert_full
    output log_tcpdump: snort.log

can't seem to locate any info to the contrary.
thanks.
-jacques.





More information about the Snort-users mailing list