[Snort-users] size of data
roesch at ...1935...
Wed Feb 23 09:12:08 EST 2005
When you configure the stream4 preprocessor you can include a
"keepstats" directive in the config line to generate a summary file
with flow statistics. Then all you need to do is use a BPF filter at
the command line to get summaries of TCP traffic between those two
preprocessor stream4: keepstats
snort -c snort.conf host w.x.y.z and host a.b.c.d
On Feb 22, 2005, at 10:26 AM, hind lebbar wrote:
> hi all,
> i'm new user of snort, i want to have an idea about the size of data
> which circulate between two machines, i only have datagramme length,
> ip length.so if there is some one who can help me to have the exect
> size, thank you.
> MSN Messenger : discutez en direct avec vos amis !
> SF email is sponsored by - The IT Product Guide
> Read honest & candid reviews on hundreds of IT Products from real
> Discover which products truly live up to the hype. Start reading now.
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> Snort-users list archive:
Martin Roesch - Founder/CTO, Sourcefire Inc. - +1-410-290-1616
Sourcefire - Discover. Determine. Defend.
roesch at ...1935... - http://www.sourcefire.com
Snort: Open Source Network IDS - http://www.snort.org
More information about the Snort-users