[Snort-users] not load snort rules when I use -D option

Jason Brvenik jasonb at ...1935...
Tue Sep 6 06:15:14 EDT 2005


Pablo Nebrera wrote:

>I solved the problem :-D
>
>The problem was I started snort as follow:
>
>/usr/sbin/snort -m 027 -d -D -l /var/log/snort -S HOME_NET=[0.0.0.0] -u
>root -g root -c /etc/snort/snort.conf -i br0
>
>and I had to put 0.0.0.0/0  :-D (stupid boy)
>  
>
You should not have to define a HOME_NET on the commant line. This 
should be set in snort.conf and is shipped set to the special range 
"any" by default.


>It doesn't tell me in the syslog, when I start snort, that snort has
>loaded the rules either, but the rules works!!! That was the confusion. 
>
>Now if I scan the ports, snort will log for the rules and for the
>preprocessors.
>
>Thanks for your help
>
>
>Pablo
>  
>





More information about the Snort-users mailing list