Snort mailing list archives
Re: How to write rules for detecting out Network traffic on port 80
From: wkitty42--- via Snort-sigs <snort-sigs () lists snort org>
Date: Sat, 30 Nov 2019 10:53:59 -0500
On 11/27/19 10:25 PM, 刘栋 via Snort-sigs wrote:
3. start snort snort -A console -q -c /etc/snort/snort.conf -i ens33
try adding "-k none" to your command line...also check the other command line options you are using... specifically "-q"... ISTR a few other options used for console output, too... maybe not but definitely check that out...
you might could also post some of the logged output if you can find that... it may be in syslog, though...
-- NOTE: No off-list assistance is given without prior approval. *Please keep mailing list traffic on the list unless* *a signed and pre-paid contract is in effect with us.* _______________________________________________ Snort-sigs mailing list Snort-sigs () lists snort org https://lists.snort.org/mailman/listinfo/snort-sigs Please visit http://blog.snort.org for the latest news about Snort! Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette Visit the Snort.org to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a href=" https://snort.org/downloads/#rule-downloads">emerging threats</a>!
Current thread:
- How to write rules for detecting out Network traffic on port 80 刘栋 via Snort-sigs (Nov 30)
- Re: How to write rules for detecting out Network traffic on port 80 wkitty42--- via Snort-sigs (Nov 30)
- Re: How to write rules for detecting out Network traffic on port 80 Patrick Willi via Snort-sigs (Dec 02)