[Bro] No http.log and dns.log
Monah Baki
monahbaki at gmail.com
Tue May 26 07:16:27 PDT 2015
I have all of the logs except my http.log and dns.log.
cat /usr/local/bro/etc/node.cfg
[bro]
type=standalone
host=localhost
interface=eth1
eth1 Link encap:Ethernet HWaddr 00:50:56:8b:0f:0a
inet6 addr: fe80::250:56ff:fe8b:f0a/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:438596065 errors:0 dropped:0 overruns:0 frame:0
TX packets:8 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:311886004695 (311.8 GB) TX bytes:648 (648.0 B)
Running "tcpdump -i eth1 port 80 or port 53", I do see output.
I even ran
broctl install
broctl restart
Still missing http.log and dns.log.
Thanks
Monah
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20150526/95b332be/attachment.html
More information about the Bro
mailing list