Hello Everyone,
I met a problem that event handlers udp_request, udp_reply, icmp_sent
doesn't work (i.e., they are not processed) when Bro read tcpdump data that
consist of udp and icmp packets. I did load udp and icmp analyzers. I noticed
that icmp_request and icmp_reply event handlers worked. Has anyone met the same
problem?
thanks
Bing