-
|
Hello, In a distributed deployment, I would like to stop traffic capture for a specific probe for a given time. Which command can do this? I've tested “so-stop zeek” but the service restarts itself afterwards. I'm not sure if I should also stop Suricatta or another one. Thanks in advance |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments
-
|
If you want to disable the service for a while, you can do that in the Otherwise, you could just bring the bond0 interface down with NetworkManager if it for a short period of time. |
Beta Was this translation helpful? Give feedback.
-
|
Thank you for your reply. Disabling the service via the GUI works perfectly. The trick of disabling the network interface is also a good temporary solution. Thank you ! |
Beta Was this translation helpful? Give feedback.
If you want to disable the service for a while, you can do that in the
GUI -> SOC -> Administration -> Configuration -> Service -> enabled -> falseJust make sure you select the node you want to disable the service on and set that node only.Otherwise, you could just bring the bond0 interface down with NetworkManager if it for a short period of time.