[Bro] Missing protocol column (TCP/DUP) in weird.log

Erik Hjelmvik erik.hjelmvik at gmail.com
Fri Sep 11 07:19:56 PDT 2015


Hi all,

I was just about to automate some handling of Bro logs but ran into issues
with weird.log since it has no protocol column.
There is IP and port columns, so it would be nice to also know if it is
TCP/UDP/SCTP etc.

Is there any chance to get such an update into Bro?

Best regards,
Erik
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20150911/22948ae0/attachment.html 


More information about the Bro mailing list