Menu
▾
▴
Re: [Snort-inline-users] Snortconfig Problem
|
From: Christopher J. <cj...@ho...> - 2004-03-17 06:22:44
|
William, Thanks for the information. I'll give Oinkmaster a try. Thank you, Chris >From: William Metcalf <Wil...@kc...> >To: "Christopher Joyce" <cj...@ho...> >CC: >bm...@sh...,rv...@ca...,sno...@li...,sno...@li... >Subject: Re: [Snort-inline-users] Snortconfig Problem >Date: Fri, 5 Mar 2004 09:51:54 -0600 > > > > > > >use oinkmaster, it works great for me. > >http://oinkmaster.sourceforge.net/ > >Regards, > >Will > > > > "Christopher > Joyce" > <cjoyce5@hotmail. To > com> bm...@sh... > Sent by: cc > snort-inline-user rv...@ca..., > s-...@li...u sno...@li...urceforg > rceforge.net e.net > Subject > [Snort-inline-users] Snortconfig > 03/04/2004 11:14 Problem > PM > > > > > > > > > >Hello Brian, > >Thank you for your reply. Sorry for the delay. > >I have tried installing snortconfig on a new machine and have the same >problem. The result after running "snortconfig -inline -file test.conf >-config honeynet.conf -directory snortconfig-rules" are empty rules. I am >currently running RedHat 7.3 with a precompiled bridging kernel. I have >installed Net-Snort-Parser-1.14.tar.gz. > >Running "perl -MNet::Snort::Parser::Rule -e 'print >$Net::Snort::Parser::Rule::VERSION."\n";'" shows "1.14". "which >snortconfig" reflects the correct location of snortconfig: >"/usr/bin/snortconfig". > >I have manually updated my Snort rules so that snort_inline can run >properly >- but it would be nice to use your snortconfig tool because it is >convenient. > >Thank you, >Chris > > > > > > On Fri, 9 Jan 2004, Christopher Joyce wrote: > > > > Hello, > > > > > > > > I am having problems using snortconfig to convert my snort rules. I > >have > > > > setup a basic test to convert one file (x11.rules) and the file that > >is > > > > created in the directory specified below is blank. > > > > > > > > Here is what I have tried: > > > > > > > > snortconfig -inline -file test.conf -config honeynet.conf -directory > > > > snortconfig-rules > > > > > > Using the latest release of snortconfig, your exact config works as > > > expected for me. What version of snortconfig are you using? > > > > > > You can find this out by doing: > > > > > > ident `which snortconfig` > > > > > > Also, what version of the perl modules are you using? You can find >this > > > out by doing: > > > > > > perl -MNet::Snort::Parser::Rule -e 'print > >$Net::Snort::Parser::Rule::VERSION."\n";' > > > > > > Thanks, > > > Brian > > > > > > > > > ------------------------------------------------------- > > > The SF.Net email is sponsored by EclipseCon 2004 > > > Premiere Conference on Open Tools Development and Integration > > > See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. > > > http://www.eclipsecon.org/osdn > > > _______________________________________________ > > > Snort-inline-users mailing list > > > Sno...@li... > > > https://lists.sourceforge.net/lists/listinfo/snort-inline-users > > > > > > > > >--- > >Outgoing mail is certified Virus Free. > >Checked by AVG anti-virus system (http://www.grisoft.com). > >Version: 6.0.605 / Virus Database: 385 - Release Date: 3/1/2004 > > > >_________________________________________________________________ >Fast. Reliable. Get MSN 9 Dial-up - 3 months for the price of 1! >(Limited-time Offer) >http://click.atdmt.com/AVE/go/onm00200361ave/direct/01/ > > > >------------------------------------------------------- >This SF.Net email is sponsored by: IBM Linux Tutorials >Free Linux tutorial presented by Daniel Robbins, President and CEO of >GenToo technologies. Learn everything from fundamentals to system >administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click >_______________________________________________ >Snort-inline-users mailing list >Sno...@li... >https://lists.sourceforge.net/lists/listinfo/snort-inline-users _________________________________________________________________ Get rid of annoying pop-up ads with the new MSN Toolbar FREE! http://clk.atdmt.com/AVE/go/onm00200414ave/direct/01/ |
