[Snort-users] starting snort
This is a discussion on [Snort-users] starting snort within the Snort forums, part of the System Security and Security Related category; This message is in MIME format. Since your mail reader does not understand this format, some or all of this ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
08-17-2004
|
|||
|
|||
[Snort-users] starting snort
This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible. ------_=_NextPart_001_01C48430.66522D37 Content-Type: text/plain Hi I have a question starting snort, I have 2 nics they are eth1 and eth2 I want that etc1 will be in promisc mode. Now I read that to start snort I need to insert the following command: Usr/local/snort/bin/snort -c /usr/local/snort/conf/snort.conf -l -I eth1 -u snort_user -g snort_group Do I really need to insert the eth1 or eth2 ? I mean do I need to put the promisc mode there or the other nic ? Thanks ------_=_NextPart_001_01C48430.66522D37 Content-Type: text/html Content-Transfer-Encoding: quoted-printable <html xmlns:o=3D"urn:schemas-microsoft-com:office:office" = xmlns:w=3D"urn:schemas-microsoft-com:office:word" = xmlns=3D"http://www.w3.org/TR/REC-html40"> <head> <META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; = charset=3Dus-ascii"> <meta name=3DGenerator content=3D"Microsoft Word 11 (filtered medium)"> <style> <!-- /* Style Definitions */ p.MsoNormal, li.MsoNormal, div.MsoNormal {margin:0in; margin-bottom:.0001pt; text-align:right; direction:rtl; unicode-bidi:embed; font-size:12.0pt; font-family:"Times New Roman";} a:link, span.MsoHyperlink {color:blue; text-decoration:underline;} a:visited, span.MsoHyperlinkFollowed {color:purple; text-decoration:underline;} span.EmailStyle17 {mso-style-type:personal; font-family:Arial; color:windowtext;} span.EmailStyle18 {mso-style-type:personal-reply; font-family:Arial; color:navy;} @page Section1 {size:595.3pt 841.9pt; margin:1.0in 1.25in 1.0in 1.25in;} div.Section1 {page:Section1;} --> </style> </head> <body lang=3DEN-US link=3Dblue vlink=3Dpurple> <div class=3DSection1 dir=3DRTL> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'><o:p> </o:p></span></f= ont></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'>Hi<o:p></o:p></span></font>= </p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'><o:p> </o:p></span></f= ont></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'>I have a question starting snort,<o:p></o:p></span></font></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'><o:p> </o:p></span></f= ont></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'>I have 2 nics they are eth1 and eth2 I want that etc1 will be in promisc = mode.<o:p></o:p></span></font></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'><o:p> </o:p></span></f= ont></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'>Now I read that to start snort I need to insert the following = command:<o:p></o:p></span></font></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'><o:p> </o:p></span></f= ont></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'>Usr/local/snort/bin/snort -c /usr/local/snort/conf/snort.conf -l -I eth1 -u snort_user -g snort_group <o:p></o:p></span></font></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'><o:p> </o:p></span></f= ont></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'>Do I really need to insert the eth1 or eth2 ? I mean do I need to put the = promisc mode there or the other nic ?<o:p></o:p></span></font></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'><o:p> </o:p></span></f= ont></p> <p class=3DMsoNormal dir=3DLTR = style=3D'text-align:left;direction:ltr;unicode-bidi: embed'><font size=3D2 face=3DArial><span = style=3D'font-size:10.0pt;font-family:Arial'>Thanks <o:p></o:p></span></font></p> </div> </body> </html> ------_=_NextPart_001_01C48430.66522D37-- ------------------------------------------------------- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 _______________________________________________ Snort-users mailing list Snort-users@lists.sourceforge.net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/...fo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.p...st=snort-users 
|
Linear Mode
