Feature #419
closedadd all options/switches available of Suri to command line
Description
"--list-keywords"
"--list-proro" (or whiever it is)
"--build-info" - these guys are not there - if you don't know them, you will never find them.
currently it( #suricata , followed by "enter") displays only these:
PlatformTesting/misc# suricata
[1989] 3/3/2012 -- 07:45:11 - (suricata.c:1126) <Info> (main) -- This is Suricata version 1.3dev (rev 2f7717a)
[1989] 3/3/2012 -- 07:45:11 - (util-cpu.c:171) <Info> (UtilCpuPrintSummary) -- CPUs/cores online: 1
[1989] 3/3/2012 -- 07:45:11 - (suricata.c:1183) <Error> (main) -- [ERRCODE: SC_ERR_OPENING_FILE(40)] - Configuration file has not been provided
Suricata 1.3dev (rev 2f7717a)
USAGE: suricata
-c <path> : path to configuration file
-i <dev or ip> : run in pcap live mode
-F <bpf filter file> : bpf filter file
-r <path> : run in pcap file/offline mode
-s <path> : path to signature file loaded in addition to suricata.yaml settings (optional)
-S <path> : path to signature file loaded exclusively (optional)
-l <dir> : default log directory
-D : run as daemon
--list-runmodes : list supported runmodes
--runmode <runmode_id> : specific runmode modification the engine should run. The argument
supplied should be the id for the runmode obtained by running
--list-runmodes
--engine-analysis : print reports on analysis of different sections in the engine and exit.
Please have a look at the conf parameter engine-analysis on what reports
can be printed
--pidfile <file> : write pid to this file (only for daemon mode)
--init-errors-fatal : enable fatal failure on signature init error
--dump-config : show the running configuration
--pcap[=<dev>] : run in pcap mode, no value select interfaces from suricata.yaml
--pcap-buffer-size : size of the pcap buffer value from 0 - 2147483647
--user <user> : run suricata as this user after init
--group <group> : run suricata as this group after init
--erf-in <path> : process an ERF file
To run the engine with default configuration on interface eth0 with signature file "signatures.rules", run the command as:
suricata -c suricata.yaml -s signatures.rules -i eth0
Updated by Victor Julien over 12 years ago
- Assignee set to OISF Dev
- Target version set to 1.3beta2
- Estimated time set to 1.00 h
Updated by Victor Julien over 12 years ago
- Target version changed from 1.3beta2 to 1.4
Updated by Eric Leblond about 12 years ago
- Assignee changed from OISF Dev to Eric Leblond
- % Done changed from 0 to 70
Fixed for app-layer-list and list-keyword and build-info in https://github.com/inliniac/suricata/pull/180
Updated by Eric Leblond about 12 years ago
- % Done changed from 70 to 90
Manual check done. Everything is in the PR.
Updated by Victor Julien about 12 years ago
- Status changed from New to Closed
- Target version changed from 1.4 to 1.4rc1
- % Done changed from 90 to 100
Merged https://github.com/inliniac/suricata/pull/205, thanks!