[Bro] Multiple Capture Interfaces
Alan J. Meeks
alan.meeks at angelo.edu
Thu Jun 10 13:24:28 PDT 2010
Sam,
I believe I installed in a non-clustered or standalone mode. Ran the ./configure, make and make install after ensuring I got all the prereqs on the server.
I also forgot to mention I was not in the position where I could pick and choose my hardware and could not get BSD installed. I had to fall back to CentOS 5.5.
Not sure if that answers your question.
-----Original Message-----
From: Sam Oehlert [mailto:soehlert at ncsa.uiuc.edu]
Sent: Thursday, June 10, 2010 3:20 PM
To: Alan J. Meeks
Cc: bro at ICSI.Berkeley.EDU
Subject: Re: [Bro] Multiple Capture Interfaces
What installation steps did you follow? I had problems getting a cluster up and running because I was installing it incorrectly at first.
Sam
----- Original Message -----
From: "Alan J. Meeks" <alan.meeks at angelo.edu>
To: "bro at ICSI.Berkeley.EDU" <bro at ICSI.Berkeley.EDU>
Sent: Thursday, June 10, 2010 3:17:12 PM
Subject: [Bro] Multiple Capture Interfaces
I am a new user of Bro. I’ve installed ver 1.5.1 and I can run just fine
with a single interface (whichever one is specified in node.cfg) but I
can’t seem to get other capture interfaces running. I am set up with 4
ethernet interfaces, three of which are taps to different locations
within my network and one to the local subnet where the server is
located.
What additional information can I provide that might help identify the
issue?
Alan Meeks
Information Security Analyst
Angelo State University
www.angelo.edu
325-942-2333 phone
325-942-2109 fax
_______________________________________________ Bro mailing list
bro at bro-ids.org
http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
More information about the Bro
mailing list