Re: IP logging tools for Solaris.

From: Marek Antozi (Marek.Antozi@Sun.COM)
Date: 11/29/01


Date: Thu, 29 Nov 2001 10:31:24 +0100 (MET)
From: Marek Antozi <Marek.Antozi@Sun.COM>
To: mofo <mofo@thirddimension.net>
Subject: Re: IP logging tools for Solaris.
Message-ID: <Pine.GSO.4.42.0111291024570.1297-100000@pavuk>


-----BEGIN PGP SIGNED MESSAGE-----

On Wed, 28 Nov 2001, mofo wrote:
>
> I'm looking for something that will do simple IP logging (a la ippl for
> linux or iplog).
>

You can use ippl.

>
> Simple enough eh? Well is there anything out there that does this? Will it
> use syslog? Must it use libpcap (not friendly in solaris)?
>

I am using ippl under solaris 8. Develop version is rewritten for using libpcap
(why not friendly ?). It works fine.

You can also use snort, but snort has more features then you was requesting.
See http://www.snort.org/ for details.

- -Marek
- --
System Administrator, Forte Tools
SUN Microsystems, Software System Group
Tel.: +420 2 3300-9126
Fax.: +420 2 3300-9299

-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8

iQCVAwUBPAYAcFsz2IMWWaEJAQEcYwP/aXxzomSOEk0nR5nxFwn6GYMydNT6Qh1X
3sTTu8WkM9pSlzn/TR4KahPYdPRWbckJxsszfr808YYUUtZQGS7WP/MNA721NGES
GS9oFW+sKahHJs9uVI8wJU+g9BcuaUTMNPBpexx0LC6ev17MmUN2JzN6WryoH7lY
kjhwUO3eljM=
=cXp+
-----END PGP SIGNATURE-----