Welcome, Guest! Log In | Create Account

Share

Passive Asset Detection System

The forum address has changed, you have been automatically redirected. Please update any bookmarks to use the new URL.

Subscribe

monitoring tap interface

Add A Reply

You are viewing a single message from this topic. View all messages.

  1. brieweb

    2009-01-03 01:09:43 UTC
    I have pads configured to listen to an interface getting data from a passive tap. Thing is, I don't seem to see any output form PADS. How much traffic does it need to see before identifying things? I have it set to output to the screen.

    brian

    [root@localhost etc]# /usr/local/bin/pads -c /usr/local/etc/pads.conf
    pads - Passive Asset Detection System
    v1.2 - 06/17/05
    Matt Shelton <matt@mattshelton.com>

    [-] WARNING: pcap_lookupnet (bond0: no IPv4 address assigned)
    [-] Filter: port 22
    [-] Listening on interface bond0

    Here is my config file.

    daemon 0
    pid_file /var/run/pads.pid
    sig_file /usr/local/etc/pads-signature-list
    mac_file /usr/local/etc/pads-ether-codes
    interface bond0
    filter port 22
    network 156.234.0.0/16
    output screen
    output csv: assets.csv

    I am running pads with the following command.

    /usr/local/bin/pads -c /usr/local/etc/pads.conf

    brian
< Previous | 1 | Next >

Add a Reply

This forum does not allow anonymous participation.

Log in to add a reply. Not registered? Create an account to participate and receive email updates when replies are posted to this topic.

About SourceForge

Find Software

Develop Software

Community

Help

Copyright © 2009 Geeknet, Inc. All rights reserved. Terms of Use