-
1)It sniffs packets and spools them straight to the disk and can daemonize itself for background packet logging. By default the file rolls over when 1 GB of data is logged.
-
2)It sniffs packets and rewrites them to a second interface, essentially acting as a soft tap. It can also do this in daemon mode.
- apt-get install daemonlogger
Config for capturing all packets to log file of format of time-date for reference
daemonlogger -i interface_name -l path_to_write_pcaps_to -u user_to_run_as_after_starting -n `date +"%H%M-%d%m%Y"` -S 0 -s 50000000
-S 0 captures all packets
-s 50000000 limits files written to approx 50Mb
0 comments:
Post a Comment