[Snort-users] CAn't get alerts to log or to work..

Fyodor fygrave at ...121...
Mon Aug 21 16:27:27 EDT 2000


~ :I'm using Debian 2.2.17 - my Snort command line "snort -d -b -s -c /snort.cfg"
~ :
~ :Snort.cfg is the "ping" rules created from snort.org's rules database.
~ :
~ :I'm just tryint to test out Snort's alerts feature.  When I ping 172.16.1.30, I get a file called: /var/log/snort/snort-0821 at ...361...  (which I assume is the tcpdump raw file)
~ :
~ :However, I don't get any alerts in my /var/log/messages.  Nor any place else that I can see.
~ :

 Can we have a look on your snort.cfg file as well?:)





More information about the Snort-users mailing list