Wrong setup?

[tmp <skrald () amossen dk>]

I have just installed snort on my debian (sid) box. During the
installation I entered "any" as HOME_NET.
But when I perform a portscan from another machine, nothing is written
to the logs (/var/log/snort/*). And that's worrying me.

1) How can I test that the setup really do work?

2) Why are there two config files, snort.conf and snort.debian.conf?
Booth seems to define HOME_NET but only snort.debian.conf defines the
mail recipient. In order to change HOME_NET, will I have to modify both
config files then?

Thanks



-------------------------------------------------------
SF.Net email is sponsored by:
Tame your development challenges with Apache's Geronimo App Server. Download
it for free - -and be entered to win a 42" plasma tv or your very own
Sony(tm)PSP.  Click here to play: http://sourceforge.net/geronimo.php
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users