Snort mailing list archives

RE: Upgrade snort 1.9.1 to 2.0 on Linux 8 (No alerts)

From: "Michael Steele" <michaels () silicondefense com>
Date: Thu, 17 Apr 2003 17:37:47 -0700

SG,

 

Run  

 

# snort -v -I eth1

 

You interface name may be different. Use ifconfig -a to get the interface
name.

 

See if you are getting traffic.

 

You could also try running your full run line from a terminal using the -T
switch at the end.

-Michael
--
 Michael Steele | System Engineer / Support Technician    
 mailto:michaels () silicondefense com   
 Silicon Defense - The Cyber-War Defense Company
 Website: http://www.silicondefense.com
 Snort: Open Source Network IDS - http://www.snort.org

  _____  

From: snort-users-admin () lists sourceforge net
[mailto:snort-users-admin () lists sourceforge net] On Behalf Of Sudhakar
Gummadi
Sent: Thursday, April 17, 2003 4:59 PM
To: snort-users () lists sourceforge net

 





Hi, 

I upgraded snort 1.9.1 to 2.0 copied the new rules to etc/snort and also the
new snort.conf and made the necessary changes. The acid/acid_main.php page
and sql works fine. 

The problem I am having is no alerts are generated in the
/var/log/snort/alert file. 

Is anything I am missing ? Pl advice. 

Thanks 
SG

Current thread:

Upgrade snort 1.9.1 to 2.0 on Linux 8 (No alerts) Sudhakar Gummadi (Apr 17)
- RE: Upgrade snort 1.9.1 to 2.0 on Linux 8 (No alerts) Michael Steele (Apr 17)