Hello All I seem to be having issues returning any results with n2disk findPacketsWithIndex searches. The issue appears when I use -f option to match only certain packets, e.g. -f "port 80". When I run the command with known port 80 traffic, over a valid time range and verified by manually reviewing the corresponding n2disk pcap file, I get no results returned in my generated pcap file.
On a related note, for my tcpdump to work, I need to use the vlan tag, e.g. tcpdump -idna0 -n "vlan and port 80" in order to return results. However, I cannot use vlan with findPacketsWithIndex (Error: vlan not supported). Any thoughts? Thank you! -Jeffrey Jeffrey Savoy, CISSP EnCE GREM Information Security Officer University of Wisconsin-Madison 608-262-8369
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Ntop-misc mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop-misc
