Snort ain't logging anything...

["Mam Ruoc" <mamruoc () hotmail com>]

Greetings snort-experts

First off all, I'm a newbie, please be patient with me....

I got some problem after upgrading to Snort 1.9.0. I've been configuring 
snort.conf a dozen times, I've set Iptables to accept everything (droppped 
using IPTables), 'cause I thought packets might been filtered before Snort. 
Nothing helped...

Then I found that my eth0 wasn't in promiscuous mode, so I'd manually add it 
to startup... Somebody said that's the problem, 'cause Snort couldn't 
retrieve data without the NIC beeing in promiscuous mode (is that right)That 
didn't help either...

Can somebody please tell what I can do to detect what's wrong?? I've used 
programs like nmap and sneeze (which tests rulesets by sending bogus 
packets), the only thing I've got back is: 'snort: (spp_arpspoof) 
Ethernet/ARP Mismatch request for Destination' in my syslog.

My system is:

Snort version 1.9.0 (Build 209) (supporting mysql)

_________________________________________________________________
MSN Messenger http://www.msn.no/messenger - Den korteste veien mellom deg og 
dine venner



-------------------------------------------------------
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
http://www.vasoftware.com
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users