[Bro] Creating multiple notice logs

Dave Crawford bro at pingtrip.com
Fri May 13 07:44:09 PDT 2016

Does anyone have an example of diverting specific notices to a new log file?

Is the right approach to hook "Notice::policy" (with priority), Log:write to the new log stream and then 'break' from the hook?


More information about the Bro mailing list