Running Packetbeatedit

Run Packetbeat by issuing the following command:

deb:

sudo /etc/init.d/packetbeat start

rpm:

sudo /etc/init.d/packetbeat start

mac:

sudo ./packetbeat -e -c packetbeat.yml -d "publish"

win:

PS C:\Program Files\Packetbeat> Start-Service packetbeat

By default the log files are stored in C:\ProgramData\packetbeat\Logs.