RE: Having trouble using -b switch

["Dan Harpold" <danharp () seaburytech com>]

I am having this problem as well, but I don't have the answer to it.

Dan Harpold, MCSD, MCSE
Seabury Technologies, Inc.
(630) 226-5051
www.seaburytech.com
mailto:danharp () seaburytech com


-----Original Message-----
From: snort-users-admin () lists sourceforge net
[mailto:snort-users-admin () lists sourceforge net]On Behalf Of
rkeller () lsoft com
Sent: Friday, September 27, 2002 10:32 AM
To: snort-users () lists sourceforge net
Subject: [Snort-users] Having trouble using -b switch


I'm a fairly new users to SNORT so bear with me.

I'm running snort 1.8.7 for Windows (from the binary snort-1.8.7-win32.exe)
with
WinPcap 2.3 and the latest stable snort rules (last modified 9/26).

Withing the local.rules file I have the following rule:

alert tcp any any -> any any (msg:"TCP traffic";)

which is a test to make sure snort is working properly

When I try to run snort with 'snort -d -l log -b -c snort.conf' when the
local rule is active, I
receive the following error in a popup window:

snort.exe has generated errors and will be closed by Windows.  You will need
to restart
the program.  An error log is being created.

When I run 'snort -d -l log -b -c snort.conf' with out the local.rules
active everything
works properly.

Has this happened to anyone else using snort on Windows?  If not, what am I
doing
wrong?



***************************
Richard Keller
Senior Computer Operations Engineer
L-Soft International, Inc.
rkeller () lsoft com



-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users