[Bro] Where are the log files when DNS monitoring ran by cli ?

John Donnelly jdonnelly at dyn.com
Wed Oct 22 05:58:24 PDT 2014


Hi,

 When I run :

 bro -i eth0  -i eth1  /usr/local/bro/share/bro/base/protocols/dns/main.bro

listening on eth0, capture length 8192 bytes

listening on eth1, capture length 8192 bytes

1413981834.692222 warning in
/usr/local/bro/share/bro/base/misc/find-checksum-offloading.bro, line 54:
Your interface is likely receiving invalid TCP and UDP checksums, most
likely from NIC checksum offloading.
^C

1413982439.080452 received termination signal
1413982439.080452 5 packets received on interface eth0, 0 dropped
1413982439.080452 1977 packets received on interface eth1, 0 dropped


I don't see any log file created under:

/usr/local/bro/logs/current

Suggestions ?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20141022/bb093505/attachment.html 


More information about the Bro mailing list