[Bro] TCP connection summaries
la_arshadi at yahoo.com
Sat Sep 28 06:07:45 PDT 2013
I see that you can get a connection summary log of an offline pcap traffic file by running bro with a simple command line as:
bro -r traffic_file_name
I have tested this command and it works well. But I am only interested in TCP connection summaries so I tried:
bro -r traffic_file_name tcp
But I get an error indication 'tcp' as unkown. What have I missed here?
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Bro