I have installed Snort 2.9.05 using Artica. On Artica, it shows Snort is running. However, when I checked snort.conf, it listed
var HOME_NET 188.165.241.0/24 which is not my network. My network is 192.168.2.0/24. When I changed /etc/snort/snort.conf, it always revert to 188.165.241.0/24. Where do I need to change to fix this problem.
If I run /etc/init.d/snort start, it return with error: /etc/snort/snort.conf: 1: var: not found
How can I be sure that Snort is running?
Thanks,
Kim
Artica Snort
First unread post • 2 posts • Page 1 of 1
Artica Snort
by drkimlaw » Sun Mar 04, 2012 2:06 pm
- drkimlaw
- Posts: 7
- Joined: Sun Mar 04, 2012 1:57 pm
- Location: Perth, Australia
- Artica servers number: 1
- Linux System: Debian
- Technical skills: A newbee
Re: Artica Snort
by admin » Sun Mar 04, 2012 3:53 pm
SNORT is driven by the network configuration you will see here :
Just ensure your network is set inside this section.
After you need to enable snort on your interface
Select your Interface under the network configuration and enable snort inside this interface
Just ensure your network is set inside this section.
- 04-03-201216-48-47.png (132.18 KiB) Viewed 306 times
After you need to enable snort on your interface
Select your Interface under the network configuration and enable snort inside this interface
- 04-03-201216-48-47.png (132.18 KiB) Viewed 306 times
- Attachments
-
- 04-03-201216-52-05.png (64.62 KiB) Viewed 306 times
Materials:
- Youtube videos: http://www.youtube.com/user/articaproject?feature=guide
Mail Docs: http://mail-appliance.org
Proxy Docs: http://proxy-appliance.org
NAS Docs: http://nas-appliance.org
-
admin - Site Admin
- Posts: 11346
- Joined: Wed Oct 17, 2007 7:59 am
- Location: France
2 posts • Page 1 of 1
Who is online
Users browsing this forum: No registered users and 0 guests