[Snort-users] Logging MAC address with snort, barnyard2 & MySQL
guillaume.b.blanc at ...11827...
Fri Aug 20 10:11:00 EDT 2010
I’m actually trying to get the MAC address of the IP showed in snort alert,
but when I download the pcap packet from BASE the only mac address that i’ve
got are 11:22:33:44:55:66 and de:ad:ca:fe:ba:be (dead:cafe:babe)…
I’ve searched around and found the option -e to activate in snort. But no
more result. I also use barnyard2 and i tried to activate the same option.
I’ve found this post who was really interesting
And in the comment someone said it was possible with barnyard2 apparently.
Do you have any clue on i can have those MAC addresses ?
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Snort-users