Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Data Collection Help (fwd)

From: "james" <the_saint_james () yahoo com>
Date: Wed, 21 Nov 2001 17:10:46 -0700
I don't think I was clear here. I am seeking the write alerts for all rules,
but for some rules log the full packet + write an alert.







I am running in full alert mode, if I add the -b switch, will this log all
packets in binary form or just on the rules where I change "alert" to

"log"

?  Will this still write an alert ?

I am seeking to just log packets that I specify "log" in the rule, don't
want to log all traffic on the T-3 !


James Edwards
jamesh () cybermesa com
At the Santa Fe Office: Internet at Cyber Mesa
Store hours: 9-6 Monday through Friday
Phone support 365 days till 10 pm via the Santa Fe office:
505-988-9200 or Toll Free: 888-988-2700





_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: