Snort mailing list archives
Re: not load snort rules when I use -D option
From: Jason Brvenik <jasonb () sourcefire com>
Date: Tue, 06 Sep 2005 09:14:20 -0400
Pablo Nebrera wrote:
You should not have to define a HOME_NET on the commant line. This should be set in snort.conf and is shipped set to the special range "any" by default.I solved the problem :-D The problem was I started snort as follow: /usr/sbin/snort -m 027 -d -D -l /var/log/snort -S HOME_NET=[0.0.0.0] -u root -g root -c /etc/snort/snort.conf -i br0 and I had to put 0.0.0.0/0 :-D (stupid boy)
It doesn't tell me in the syslog, when I start snort, that snort hasloaded the rules either, but the rules works!!! That was the confusion.Now if I scan the ports, snort will log for the rules and for the preprocessors. Thanks for your help Pablo
------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- not load snort rules when I use -D option Pablo Nebrera (Sep 05)
- Re: not load snort rules when I use -D option T.C. (Sep 05)
- Re: not load snort rules when I use -D option Jason Brvenik (Sep 05)
- Re: not load snort rules when I use -D option Pablo Nebrera (Sep 06)
- Re: not load snort rules when I use -D option Jason Brvenik (Sep 06)
- Re: not load snort rules when I use -D option Jason Brvenik (Sep 05)
- Re: not load snort rules when I use -D option T.C. (Sep 05)
- Re: not load snort rules when I use -D option Jason Brvenik (Sep 05)