Public | Automated Build

Last pushed: 4 days ago
Short Description
A Docker version of Bro IDS for live network traffic.
Full Description


Docker version of Bro to run with live network traffic.

This Dockerfile was inspired by Jon Schipp blog about running Bro in docker on live network traffic.

I started with what he had and fix some bugs that I ran into. After that I optimize the build process to make the smallest possible image that I could.

To run this you should use the following command line options.

-d --net=host -v /opt/bro/logs:/opt/bro/logs -v /opt/bro/spool:/opt/bro/spool

Docker Pull Command
Source Repository