[Snort-users] Trouble reading snort.log.*

Michael Boman michael.boman at ...4162...
Sun Apr 13 23:00:07 EDT 2003


On Mon, Apr 14, 2003 at 12:03:35AM -0500, Jacques wrote:
> Is it my imagination, or did I use to be able to dump snort.log with 
> tcpdump ?
> 
> Using snort-2.0.0rc4
> 
> [localhost:/var/log/snort] root# tcpdump -f snort.log.1050279226
> tcpdump: parse error

Try: tcpdump -r snort.log.1050279226

Also, make sure it's a pcap file by running:

file snort.log.1050279226

Best regards
 Michael Boman

-- 
Michael Boman
Security Architect, SecureCiRT Pte Ltd
http://www.securecirt.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20030413/03b088a7/attachment.sig>


More information about the Snort-users mailing list