[Snort-users] Data Not Shown In ACID Console

Pathmenanthan Ramakrishna ids79 at ...5703...
Thu Jan 9 06:56:02 EST 2003


when i run this command snortd start,i can see aletrs and TCP data figures in ACID CONSOLE where these data are from mysql database.

but why when i dont run the snortd start command but i run the snort using ./snort -dev -l -./log -h 172.16.2.0/24 i could see this figures below at the ACID CONSOLE? why?

Snort analyzed 143 out of 143 packets,
dropping 0(0.000%) packets
Breakdown by protocol:                Action Stats:
TCP: 11         (7.692%)          ALERTS: 1
UDP: 10         (6.993%)          LOGGED: 1
ICMP: 104        (72.727%)         PASSED: 0
ARP: 12         (8.392%)
EAPOL: 0          (0.000%)
IPv6: 0          (0.000%)
IPX: 0          (0.000%
OTHER: 6          (4.196%)
DISCARD: 0          (0.000%)
 ======================================

how do i enable this so that it records the data into the mysql database and populate it at the ACID.i have configured correctly in the snort.conf file for the output database link.

IS running snortd start in daemon mode differ from ./snort -dev?

please do help.

thanks

Nanthan





_____________________________________________________________
Get 25MB, POP3, Spam Filtering with LYCOS MAIL PLUS for $19.95/year.
http://login.mail.lycos.com/brandPage.shtml?pageId=plus&ref=lmtplus




More information about the Snort-users mailing list