Snort not generating alerts

["Matt ." <sttwok82 () gmail com>]

Resending as this apparently didn't go through yesterday.

I'm ramping up on Linux and Snort, so not highly familiar with them yet.
That said I've installed Snort and Snort Report onto Ubuntu 12.04 via the
instructions at the following URL and fixed the errrors that prevented
snort and barnyward2 from running.
http://www.symmetrixtech.com/articles/016-snortinstallguide2953.pdf
At this point I am not able to determine why it's not generating alerts
after test vulnerbility scanrs are run, the log files are empty. If I add
the following lines uncommented out to the bottom of snort.conf, data is
put into the log files and database. But once I comment out the lines
nothing is generated.

#alert ip any any -> any any (msg:"Got an IP Packet";
classtype:not-suspicious; sid:2000000; rev:1;)

#alert icmp any any -> any any (msg:"Got an ICMP Packet";
classtype:not-suspicious; sid:2000001; rev:1;)
#alert icmp any any -> any any (msg:"ICMP Large ICMP Packet"; dsize:>800;
reference:arachnids,246; classtype:bad-unknown; sid:2000499; rev:4;)
 I've searched online and am stumped. Any assistance, pointers,
recommendations would be much appreciated.
Thanks,
Matt

------------------------------------------------------------------------------
October Webinars: Code for Performance
Free Intel webinars can help you accelerate application performance.
Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from 
the latest Intel processors and coprocessors. See abstracts and register >
http://pubads.g.doubleclick.net/gampad/clk?id=60135991&iu=/4140/ostg.clktrk

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!