[INUG-Users] OT: Perl to "re-play" raw trapd.log
douglasstvnsn at aol.com
douglasstvnsn at aol.com
Fri Jul 24 11:18:16 EDT 2009
Another thought...
I have a friend that is using SNORT to capture and log ALL SNMP / Syslog, parses that data and replays? it.
That way, you get EVERYTHING as a validation.
Thinking about doing the same thing here.
Dougie!!!
-----Original Message-----
From: brad.bueche at wachovia.com
To: users at netcoolusers.org
Sent: Thu, Jul 23, 2009 2:04 pm
Subject: [INUG-Users] OT: Perl to "re-play" raw trapd.log
This is sort of relevant as it will save me time testing rules files if
its already written!
I guess I can write it eventually but if anybody already HAS written a
perl program that will take the trapd.log as input and re-output the traps
that would be a great help.
If nobody has it, when I get it written, I'll post it.
brad
_______________________________________________
Sent by the netcoolusers.org "users" mailing list
Post: users at netcoolusers.org
Unsubscribe: users-unsubscribe at netcoolusers.org
Search: http://netcoolusers.org/Search
More information about the Users
mailing list