Re: snort 2.8.6.0 & barnyard2-1.8 problems

[JJC <cummingsj () gmail com>]

What command are you using in your snort.conf to create the unified2 file
output?

On Wed, Jun 9, 2010 at 9:03 AM, Lawrence R. Hughes, Sr. <
lhughes () safemedia com> wrote:

>  Hi,
>
> Snort 2.8.6.0 reports to the mysql database without any problems, when we
> change snort to unified2 output,
> barnyard2-1.8 connects to the same database, but does not report anything?
>
> We get the messages from barnyard: Not IPv4 datagram! ([ver: 0x6][len:
> 0x0])
> and it discards 100.00% ????
>
> Has anyone seen this problem?
>
> Thanks,
> Larry
>
>
>
> ------------------------------------------------------------------------------
> ThinkGeek and WIRED's GeekDad team up for the Ultimate
> GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the
> lucky parental unit.  See the prize list and enter to win:
> http://p.sf.net/sfu/thinkgeek-promo
> _______________________________________________
> Snort-users mailing list
> Snort-users () lists sourceforge net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users
------------------------------------------------------------------------------
ThinkGeek and WIRED's GeekDad team up for the Ultimate 
GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the 
lucky parental unit.  See the prize list and enter to win: 
http://p.sf.net/sfu/thinkgeek-promo

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users