log snort

Diskusi tentang Ubuntu Server baik webserver, database server, samba server dan service lainnya serta jaringan menggunakan Sistem Operasi Ubuntu.
Post Reply
User avatar
r1n04j4

log snort

Post 05 Nov 2012, 12:35

Bagaimana carany membaca dan membuka file log snort ?
saya coba2 trs tidak bisa. mungkin ada yg bisa membantu
thanks.


User avatar
rizaaal
Contact:

Post 05 Nov 2012, 15:25

# tail -f /var/log/snort/alert

CMIIW


User avatar
jail

Post 10 Nov 2012, 10:59

---------


User avatar
q_p
Contact:

Post 10 Nov 2012, 18:10

@r1n04j4,
Mungkin maksudnya snort dalam Packet Logger Mode ya ? coba yang ini mas,
[spoiler]Perintah u/ mencatat paket :

Code: Select all

./snort -dev -l ./log
./snort -dev -l ./log -h 192.168.0.0/24
./snort -dev -l ./log -b
Perintah untuk membaca log :

Code: Select all

./snort -dv -r packet.log
./snort -dv -r packet.log | icmp
[/spoiler]CMIIW.


Post Reply

Who is online

Users browsing this forum: No registered users and 36 guests