Snort mailing list archives
Re: Snort switches to packet Dump Mode
From: Mayur Patil <ram.nath241089 () gmail com>
Date: Thu, 18 Jul 2013 00:04:56 +0530
Thanks Waldo for reply. I will go for it and report here. Thanks for your support and time !! -- *Cheers, Mayur*. On Thu, Jul 18, 2013 at 12:00 AM, waldo kitty <wkitty42 () windstream net>wrote:
On 7/17/2013 13:29, Mayur Patil wrote:Thanks Waldo for reply. As I have done in new installation, as per knowledge (from pdf ;) ) I have not created any link to /etc/init.d/snortok...*other than /usr/local/bin*. So symbolic link is only at /usr/local/bin which we have discussed earlier. Other not exist as per I setup.ok... then it should work if centos uses only /etc/init.d files...-- *Cheers, Mayur*. On Wed, Jul 17, 2013 at 10:46 PM, waldo kitty <wkitty42 () windstream net <https://mail.google.com/mail/u/0/?view=cm&fs=1&tf=1&to=wkitty42 () windstream net>> wrote:On 7/17/2013 12:58, Mayur Patil wrote: > sorry one question remaining > > now if I reboot my system does it will go into packet dump mode?? AFAICT, it never has... you were starting a new copy of snort thatwas runningin packet dump mode... did you have to create any links in /etc/rc.d or similar to point to /etc/init.d/snort when you set it up? you might want to check to seeif thoselinks are still connected and connected to the /etc/init.d/snortdscript file...you might even want to remove those links and redo them with the newsnortd nameinstead of the old snort name... i don't have that pdf any more so idon't knowif there was something about the links or not...
------------------------------------------------------------------------------ See everything from the browser to the database with AppDynamics Get end-to-end visibility with application monitoring from AppDynamics Isolate bottlenecks and diagnose root cause in seconds. Start your free trial of AppDynamics Pro today! http://pubads.g.doubleclick.net/gampad/clk?id=48808831&iu=/4140/ostg.clktrk
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- Re: Snort switches to packet Dump Mode, (continued)
- Re: Snort switches to packet Dump Mode waldo kitty (Jul 16)
- Re: Snort switches to packet Dump Mode Mayur Patil (Jul 16)
- Re: Snort switches to packet Dump Mode waldo kitty (Jul 16)
- Re: Snort switches to packet Dump Mode Mayur Patil (Jul 16)
- Re: Snort switches to packet Dump Mode waldo kitty (Jul 17)
- Re: Snort switches to packet Dump Mode Mayur Patil (Jul 17)
- Re: Snort switches to packet Dump Mode Mayur Patil (Jul 17)
- Re: Snort switches to packet Dump Mode waldo kitty (Jul 17)
- Re: Snort switches to packet Dump Mode Mayur Patil (Jul 17)
- Re: Snort switches to packet Dump Mode waldo kitty (Jul 17)
- Re: Snort switches to packet Dump Mode Mayur Patil (Jul 17)
- CPU pegged for unknown reasons Scott Finlon (Jul 17)
- Re: CPU pegged for unknown reasons waldo kitty (Jul 17)
- Re: Snort switches to packet Dump Mode waldo kitty (Jul 17)