Snort mailing list archives

Snort 2.9 on OpenWrt (18.06.1)

From: Posting Stuff via Snort-users <snort-users () lists snort org>
Date: Fri, 18 Jan 2019 08:47:22 -0800

Hello!

I'm trying to figure out best practice for running Snort on OpenWrt
(18.06.01). I can get the package running but there are some challenges:

1. Setting up rule sets natively is extremely manual.
2. Correcting rule errors is challenging
3. Information on best rule sets to use (preprocessor, rules to use, Shared
objects) information is non-existing.

So here are my questions:

1. Can I use pulledpork to process the rules updates off-box using CentOS 7?
2. If the above isn't the right methodology, what is the best way to
automate correcting rules errors?
3. Is there best practice information about running Snort on embedded OS
devices?

Thanks in Advance for the Assist!

Mike

_______________________________________________
Snort-users mailing list
Snort-users () lists snort org
Go to this URL to change user options or unsubscribe:
https://lists.snort.org/mailman/listinfo/snort-users

        To unsubscribe, send an email to:
        snort-users-leave () lists snort org

Please visit http://blog.snort.org to stay current on all the latest Snort news!

Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette

Current thread:

Snort 2.9 on OpenWrt (18.06.1) Posting Stuff via Snort-users (Jan 18)
- Re: Snort 2.9 on OpenWrt (18.06.1) wkitty42--- via Snort-users (Jan 18)