[Snort-users] blank packet in BASE

Joel Esler joel.esler at ...1935...
Mon Oct 3 06:40:55 EDT 2005


We'd need more information about the alert in order to diagnose the  
problem.

Joel Esler


On Oct 3, 2005, at 5:32 AM, Mattia wrote:

> Hi all,
> I'm using BASE to receive packet from all my installed sensors. All
> works fine with Linux but not with windows sensor.
> My problem is that if I go to see the content of the packet logged by
> the winsnort sensor with BASE, I don't see anything, or better, I see
> only the rule that generated the log.
> How is it possible?
> In my snort.conf file I'm using "output log_unified: snort.log" as on
> the Linux sensors, but on the Linux sensors I can read the content of
> the packet when is logged in BASE.
> I'm doing something wrong in the snort.conf file for winsnort?
>
> Regards,
>
> Mattia
>
>
>
>
> -------------------------------------------------------
> This SF.Net email is sponsored by:
> Power Architecture Resource Center: Free content, downloads,  
> discussions,
> and more. http://solutions.newsforge.com/ibmarch.tmpl
> _______________________________________________
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users
>
>





More information about the Snort-users mailing list