On Tue, 1 Oct 2013, Robert wrote:
[rcortiz@simon ~]$ sudo nice -10 /usr/sbin/tcpdump -i eth2.10 -s 90 -nn port
514 -w /dev/null | cut -c 1-8 | uniq -c
tcpdump: listening on eth2.10, link-type EN10MB (Ethernet), capture size 90
bytes
^C24570048 packets captured
24570414 packets received by filter
0 packets dropped by kernel
Ok, that's good information.
try adding the -B flag that I mentioned in another message (-B 8192) and see if
that helps without the -w /dev/null
also try -w /local/file and then a tcpdump -r /local/file |cut -c 1-8 |uniq -c
David Lang
_______________________________________________
rsyslog mailing list
http://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of
sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE
THAT.
