Hi all,Is it possible to configure a command on an ossec agent to read a tcpdump binary file?? For example:
<localfile>
<log_format>command</log_format>
<command>tcpdump -nv -ttt -r /var/log/pflog</command>
</localfile>
Could this be work??
--
CL Martinez
carlopmart {at} gmail {d0t} com
