This is what I am looking for, I want Snort to log Alert logs in text format. Now I am not sure which command would be appropriate, I have tried snort -D -c /etc/snort/snort.conf -l -K ascii /var/log/snort/ and it shows a log. This log is not capturing alerts, it is showing all ICMP traffic, at a IP of 127.0.0.2 this is a loopback IP.
Could you show me what command you use to get alerts and save them in text mode.