Ethereal-users: Re: [Ethereal-users] [Q-OT] Size of a trace and hub functions

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next
From: Guy Harris <guy@xxxxxxxxxx>
Date: Fri, 9 Feb 2001 12:48:20 -0800 (PST)
> Have you considered using snort to do this.  If you write a signature for
> this, when it triggers it can save the traffic in a libpcap capture file.
> 
> Take look at:
> http://www.snort.org/writing_snort_rules.htm
> for more info about writing snort rules

Hmm.  We've recently had recommendations for both ntop and snort in
response to people trying to do some sort of network monitoring process.

The tcpdump.org Web site has a "Related Projects" page:

	http://www.tcpdump.org/related.html

describing various other network traffic capture/analysis/etc. projects;
perhaps the Ethereal Web site should do something along those lines?