udp_request and icmp_sent event handlers

Vern · May 9, 2005, 5:39am

Thank you for your help. Yes, it works after I redef the capture_filters.

Great, glad to hear it.

How about the icmp_sent event handler? Should the icmp_sent event handler see
all kinds of icmp packets?

If you look in icmp.bro you'll see that it already sets a capture_filters
entry, so yes, it should see all kinds of ICMP packets (at least, those
for which the event engine generates events).

Vern

bchen · May 9, 2005, 9:18pm

Hi Vern,
I can see that icmp_echo_request, icmp_reply, flow_summary and
icmp_unreachable event handlers work. But icmp_sent doesn't work. I just put
print statement in each of these handlers, only icmp_sent didn't print
anything. Any idea about this problem? thanks

Bing

Topic		Replies	Views
udp_request and icmp_sent event handlers Zeek	1	95	May 6, 2022
udp_request and icmp_sent event handlers Zeek	2	95	May 6, 2022
udp_request and icmp_sent event handlers Zeek	1	74	May 6, 2022
udp event handlers not catching events Zeek	2	87	May 6, 2022
icmp_time_exceeded Zeek	2	68	May 6, 2022

udp_request and icmp_sent event handlers

Related topics