[Snort-users] Data Not Shown In ACID Console
ids79 at ...5703...
Thu Jan 9 06:56:02 EST 2003
when i run this command snortd start,i can see aletrs and TCP data figures in ACID CONSOLE where these data are from mysql database.
but why when i dont run the snortd start command but i run the snort using ./snort -dev -l -./log -h 172.16.2.0/24 i could see this figures below at the ACID CONSOLE? why?
Snort analyzed 143 out of 143 packets,
dropping 0(0.000%) packets
Breakdown by protocol: Action Stats:
TCP: 11 (7.692%) ALERTS: 1
UDP: 10 (6.993%) LOGGED: 1
ICMP: 104 (72.727%) PASSED: 0
ARP: 12 (8.392%)
EAPOL: 0 (0.000%)
IPv6: 0 (0.000%)
IPX: 0 (0.000%
OTHER: 6 (4.196%)
DISCARD: 0 (0.000%)
how do i enable this so that it records the data into the mysql database and populate it at the ACID.i have configured correctly in the snort.conf file for the output database link.
IS running snortd start in daemon mode differ from ./snort -dev?
please do help.
Get 25MB, POP3, Spam Filtering with LYCOS MAIL PLUS for $19.95/year.
More information about the Snort-users