[Snort-users] BASE sensor name
jesler at ...1935...
Mon Aug 1 10:47:15 EDT 2011
Huh. Never heard that one before James.
How are you logging? (output method)
You might want to try loading the bpf in a file and then calling the file through -F
On Aug 1, 2011, at 10:42 AM, Lay, James wrote:
> Hey all!
> Real quick…seems like when I start snort with a tcpdump style filter (snort –c snort.conf “ip and not host blah blah blah”) my sensor name shows up as the sensorname:interface:tcpdumpfilter. Anyone else seen anything like this? It’s not a complete pain…just looks kinda dumb ;) Didn’t see any fixes after googling, so I thought I’d ask here. Thanks all..have a great week J
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Snort-users