[Snort-users] CAn't get alerts to log or to work..
fygrave at ...121...
Mon Aug 21 16:27:27 EDT 2000
~ :I'm using Debian 2.2.17 - my Snort command line "snort -d -b -s -c /snort.cfg"
~ :Snort.cfg is the "ping" rules created from snort.org's rules database.
~ :I'm just tryint to test out Snort's alerts feature. When I ping 172.16.1.30, I get a file called: /var/log/snort/snort-0821 at ...361... (which I assume is the tcpdump raw file)
~ :However, I don't get any alerts in my /var/log/messages. Nor any place else that I can see.
Can we have a look on your snort.cfg file as well?:)
More information about the Snort-users