Hi, I am new to nfdump/nfcapd and have been playing around a bit today, I have run into one problem however, when using the -x option I don't get the expected behavior, the command expansion isn't working how I would expect (not necessarily something to do with nfcapd). I am running nfdump-1.6.2 on Centos 5.5. I am invoking nfcapd with: nfcapd -P /var/run/nfcapd.pid -w -D -S 7 -l /flows/ -p 23456 -x /root/testout.sh %d
The file /root/testout.sh contains: #!/bin/bash echo $1 >> /root/testout.text Now running something like "/root/testout.sh blah" produces the expected line in /root/testout.text however, when nfcapd rotates the file it just puts in a new line and doesn't appear to do the substitution. I am guessing I am just missing something simple, I am just not sure what. Regards, James. ------------------------------------------------------------------------------ Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)! Finally, a world-class log management solution at an even better price-free! Download using promo code Free_Logger_4_Dev2Dev. Offer expires February 28th, so secure your free ArcSight Logger TODAY! http://p.sf.net/sfu/arcsight-sfd2d _______________________________________________ Nfdump-discuss mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/nfdump-discuss
