Daemonlogger is a packet logger and soft tap developed by Martin Roesch. The libpcap-based program has two runtime modes:
1. It sniffs packets and spools them straight to the disk and can daemonize itself for background packet logging. By default the file rolls over when 2 GB of data is logged.
2. It sniffs packets and rewrites them to a second interface, essentially acting as a soft tap. It can also do this in daemon mode.
These two runtime modes are mutually exclusive, if the program is placed in tap mode (using the -I switch) then logging to disk is disabled.
Make SURE you read the included COPYING file so that you understand how this file is licensed by Sourcefire, even though it's under the GPL v2 there are some clarifications that we have made regarding the licensing of this program.
Daemonlogger is a registered trademark of Sourcefire, Inc.
Categories
Network MonitoringLicense
GNU General Public License version 2.0 (GPLv2)Follow Daemonlogger
User Reviews
-
Iam exploring daemonlogger to log packets. Sir i want to log single packets into new pcap files (Each pcap file should not contain more that one packet) using daemonlogger -c 1 is creating a pcap file with single packet in it and exiting but i want daemon logger to continuously log each single packets into a new pcap file without exiting.