[Snort-users] Having trouble using -b switch

rkeller at ...7000... rkeller at ...7000...
Fri Sep 27 08:33:02 EDT 2002

I'm a fairly new users to SNORT so bear with me.

I'm running snort 1.8.7 for Windows (from the binary snort-1.8.7-win32.exe) with 
WinPcap 2.3 and the latest stable snort rules (last modified 9/26).

Withing the local.rules file I have the following rule:

alert tcp any any -> any any (msg:"TCP traffic";)

which is a test to make sure snort is working properly

When I try to run snort with 'snort -d -l log -b -c snort.conf' when the local rule is active, I 
receive the following error in a popup window:

snort.exe has generated errors and will be closed by Windows.  You will need to restart 
the program.  An error log is being created.

When I run 'snort -d -l log -b -c snort.conf' with out the local.rules active everything 
works properly.

Has this happened to anyone else using snort on Windows?  If not, what am I doing 

Richard Keller
Senior Computer Operations Engineer
L-Soft International, Inc.
rkeller at ...7000...

More information about the Snort-users mailing list