Re: how enable icmp snort-2.9.6.1

[hernani <coelho.hernani () sapo pt>]

> hello,
>
> i put preprocessor and error disappear  but snort dont detect icmp.
>
>
> this is preprocessor portscan
>
>
> preprocessor sfportscan: proto  { all } scan_type { all } memcap {
> 10000000 } sense_level { High }
>
>
>
> and this
>
> preprocessor stream5_global: track_tcp yes, \
>      track_udp yes, \
>      track_icmp yes, \
>      max_tcp 262144, \
>      max_udp 131072, \
>      max_active_responses 2, \
>      min_response_seconds 5
> Preprocessor stream5_icmp:
>
>    thanks
>
> hernani coelho
hello,
*when i make this command --->*  sudo /usr/local/snort/bin/snort -A 
console -u snort -g snort -c /usr/local/snort/etc/snort.conf -i wlan0

*i get this error ---> *WARNING: Stream5 ICMP misconfigured (policy 0).
ERROR: Stream5 not properly configured... exiting
Fatal Error, Quitting..




------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions
Find What Matters Most in Your Big Data with HPCC Systems
Open Source. Fast. Scalable. Simple. Ideal for Dirty Data.
Leverages Graph Analysis for Fast Processing & Easy Data Exploration
http://p.sf.net/sfu/hpccsystems

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!