- I tried a pcapng file on tryZeek online for conn.log
- parllelly same pacpng, I ran zeek6.0.1 on ubuntu20.04 for conn.log
There is a huge mismatch in the total number of packets and udis/flows recorded by tryZeek and local zeek6.0.1.
- could you please help me in this regard.
New users cannot upload files : not able to attach the files.
-Thanks in advance for any help.