[Snort-users] Output log_unified in snort.conf

Avery Rozar asrozar at ...131...
Wed Oct 8 11:09:05 EDT 2008


Hello,
I am having a log size issue, I thought it was fixed with the output log_unified: plugin, but I then can not read the file with wireshark. So I used output log_tcpdump: and I can now read the log file like I need to, but there is no limit statement with it, so I'm back to the 128m default. Please help me if you can. Thanks,

arozar


      
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20081008/84af0e69/attachment.html>


More information about the Snort-users mailing list