# snifdet example configuration file
# http://sniffdet.sourceforge.net
#
# see sniffdet.conf (5) manpage

# global configuration
global {
	verbose = 0;
	# this is one or a combination of FILE, STDOUT, STDERR, SYSLOG
	logtype = FILE;
	# want a logfilename by default?
	logfilename = "sniffdet.log";
	plugins_dir = "@SNDET_PLUGINSDIR@"
	plugin = "stdout.so";
	# UID to use after dropping root privileges
	UID = 280;
	# GID to use after dropping root privileges
	GID = 280;
	iface = "eth0";
	fake_hwaddr = {0xff, 0x00, 0x00, 0x00, 0x00, 0x00};
	fake_ipaddr = "192.168.1.100";
}

# icmp test variables
icmptest {
	# interface per test not supported yet
	#iface = "eth0";
	timeout = 20; # secs
	tries = 10;
	interval = 1000 # msecs
	fake_hwaddr = {0xff, 0x00, 0x00, 0x00, 0x00, 0x00};
}

# arp test variables
arptest {
	# interface per test not supported yet
	#iface = "eth0";
	timeout = 20; # secs
	tries = 10;
	interval = 1000 # msecs
	fake_hwaddr = {0xff, 0x00, 0x00, 0x00, 0x00, 0x00};
}

# dns test variables
dnstest {
	# interface per test not supported yet
	#iface = "eth0";
	timeout = 20; # secs
	tries = 10;
	interval = 1000 # msecs
	fake_ipaddr = "10.0.0.10"
	fake_hwaddr = {0x46, 0x0f, 0xA4, 0x33, 0x11, 0xD1};
	sport = 22;
	dport = 22;
	# payload support not implemented in parser yet...
	#payload = "login: foobar";
}

# latency test variables
latencytest {
	# interface per test not supported yet
	#iface = "eth0";
	timeout = 300; # secs
	interval = 1500; # msecs
	# tcpflags supported: SYN, FIN, RST, ACK, PUSH and URG
	tcpflags = SYN;
	# payload support not implemented in parser yet...
	#payload = "";
}

# plugins specific options
plugins {
	xmlplugin_filename = "xmloutput.xml"
}