Snort mailing list archives

Previous By Date Next
Previous By Thread Next

alert not write.!!

From: Hideki Hirata <hawk () nsd r-ts co jp>
Date: Fri, 14 Nov 2003 13:02:40 +0900
Dear ALL snort users

I 'm recently use snort. it is begginer.
Please from All the snort user tell about my snort server (OS:Redhat 9)
 /etc/snort.conf configration method.

(case 1)
#snort -de -c /etc/snort/snort.conf -i lo -u snort -g snort (ENTER)

# ping 127.0.0.1(ENTER)
# ping (eth0_address in my server) (enter)

/var/log/snort/alert log writing is normal

(case 2)
but,

# snort -de -c /etc/snort/snort.conf -i eth0 -u snort -g snort (ENTER)

# ping (eth0_address in my server) (enter)
# ping (same subnet among other host ipaddress ) (enter)

/var/log/snort/alert log not write.!!
nothing write.

any answer?

Regards

Hideki 
hawk () nsd r-ts co jp
 








-------------------------------------------------------
This SF.Net email sponsored by: ApacheCon 2003,
16-19 November in Las Vegas. Learn firsthand the latest
developments in Apache, PHP, Perl, XML, Java, MySQL,
WebDAV, and more! http://www.apachecon.com/
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: