snort能够配置成三种模式运行:嗅探器(sniffer),包记录器(packet logger)和网络入侵检测系统(NIDS)。嗅探模式(sniffer mode)简单的读取网络中的数据包,并以.
基于16个网页-相关网页
Packet Logger mode 包记录器模式
So you should either run Snort as a packet logger in a window you can minimize and ignore, or better yet, as a long-running process (perhaps as a daemon or system process).
因此,应将Snort作为包记录器在一个可最小化、可忽略的窗口中运行,更好的方法是,将其作为长期运行的进程(作为守护进程或系统进程)。
That's also a subject for the next article, so while you're experimenting with Snort, work with the command-line version, the packet sniffer, but hold off on the packet logger for now.
这也是另一篇文章的主题,现在您尝试了使用Snort、使用命令行版本、包嗅探器,但包记录器的更多内容不在此处赘述。
应用推荐