[Snort-users] problems in snort installing.

Mohammad MontazerI mohamad_montazery at ...131...
Sat Mar 16 11:49:39 EDT 2013


Hello.

i trying to install SNORT 2.9.4.1 and DAQ 2.0.0 in opensuse 12.2 on vmware.
i did it step by step according to the install guidewhich i downloaded from the main web site.

i will exactly write down there the commands which i used with their following messages:

linux-s211:/usr/sbin # ./snort -T -i eth0 -u snort -g snort -c /etc/snort/snort.conf
.
.
snort successfully validated the configuration!
Snort exiting

linux-s211:/usr/sbin # ./snort -i eth0 -D -u snort -g snort -c /etc/snort/snort.conf
Spawning daemon child...
My daemon child 3987 lives...
Daemon parent exiting (0)


inux-s211:/usr/sbin # ps aux | grep -i "snort"
snort     3987  0.1  5.4 316068 54936 ?        Ssl  11:59   0:00 ./snort -i eth0 -D -u snort -g snort -c /etc/s
root      3990  0.0  0.0   4172   804 pts/1    S+   11:59   0:00 grep --color=auto -i snort


everythings seems ok until here but!!:

linux-s211:/usr/sbin # /etc/init.d/snort start
bash: /etc/init.d/snort: Permission denied (i already switched to root and copied snort script to the /etc/init.d directory )

and this one: (i think this one is more important)

linux-s211:/usr/sbin # ./snort status
Running in packet dump mode
--== Initializing Snort ==--
Initializing Output Plugins!
Snort BPF option: status
pcap DAQ configured to passive.
Acquiring network traffic from "eth0".
ERROR: Can't set DAQ BPF filter to 'status' (pcap_daq_set_filter: pcap_compile: syntax error)! (i did install libdnet-devel-1.12-15.1.2.i586 and libpcap-devel-1.2.1-3.1.2.i586)
Fatal Error, Quitting..


now i really don't where i did wrong!  if you need more information about OS or anything else just say it.
please help me on it.
Thanks. 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20130316/962e77c8/attachment.html>


More information about the Snort-users mailing list