But if I uncomment the options for fanout ID and mode I receive the errors:
Warning: ignoring unrecognized node config option ‘af_packet_fanout_id’ given for node ‘lan’
Warning: ignoring unrecognized node config option ‘af_packet_fanout_mode’ given for node ‘lan’
Should I be explicitly loading the init.bro script, and if so what would the syntax be to reference the bro/lib/bro/plugins/Bro_AF_Packet/scripts/directory?
But if I uncomment the options for fanout ID and mode I receive the errors:
Warning: ignoring unrecognized node config option 'af_packet_fanout_id' given for node 'lan'
Warning: ignoring unrecognized node config option 'af_packet_fanout_mode' given for node ‘lan'
According to your bro -N output you are using the plugin in version 1.0.
The additional options have been added in version 1.1. In any case,
default values should be set automatically. If you want to set the
fanout mode manually, you need to use something like
"af_packet_fanout_mode=AF_Packet::FANOUT_HASH" (forgot the prefix in the
README, sorry).
The fanout_id option no longer causes a warning message but setting the fanout mode option as shown in the README file causes an error:
af_packet_fanout_mode=FANOUT_HASH
error in /data/bro/spool/tmp/check-config-lan-1/broctl-config.bro, line 19: unknown identifier FANOUT_HASH, at or near “FANOUT_HASH"
If you want to set the fanout mode manually, you need to use something like
"af_packet_fanout_mode=AF_Packet::FANOUT_HASH" (forgot the prefix in the
README, sorry).
