[Oisf-users] suricata and libtrace
Victor Julien
victor at inliniac.net
Tue Jan 17 10:15:52 UTC 2012
On 01/17/2012 06:00 AM, Russell Fulton wrote:
> Hi,
>
> One of my academic colleagues has a machine with a DAG card and we have now got both our internet feeds mirrored back onto this card. Using libtrace we can expose this combined trace on a tcp port. Can suri read data from a compressed packet trace produced by libtrace?
No it won't be able to. It should be possible to have Suricata use the
DAG card directly. Also ERF files are supported.
--
---------------------------------------------
Victor Julien
http://www.inliniac.net/
PGP: http://www.inliniac.net/victorjulien.asc
---------------------------------------------
More information about the Oisf-users
mailing list