[Snort-users] @barnyard error

anagha b banagha3 at ...11827...
Tue Sep 3 02:02:28 EDT 2013


I am using following command to run snort

/srv/snort/bin/snort -u root -g root -c /srv/snort/etc/snort.conf -i eth0

when I tried to run barnyard using this command

1]root at ...1981...:/# /usr/local/bin/barnyard2 -c /srv/snort/etc/barnyard2.conf

o/p :  ERROR: Unable to open directory '' (No such file or directory)

 started barnyard with different command suggested by peter bates in mail
this time the command is

2] /usr/local/bin/barnyard2 -c /srv/snort/etc/barnyard2.conf  - -d
/var/log/snort -f snort.u2

o/p is :

Opened spool file '/var/log/snort/snort.u2.1378112617'
Closing spool file '/var/log/snort/snort.u2.1378112617'. Read 0 records
Opened spool file '/var/log/snort/snort.u2.1378186738'
Waiting for new data
^C*** Caught Int-Signal
Barnyard2 exiting
database: Closing connection to database "snort"
Record Totals:
   Records:           0

nothing happens after waiting for new data message.

This time while running barnyard with second command I have not removed
barnyard2.waldo file .

I hope this answers all the questions asked by  Mr Peter Bates  .  Plz help
me to rectify why barnyard is processing 0 records . I want to launch
portscan on snort but before that o/p file snort.u2 must be read by
barnyard or other way I ahve to launch portscan first. Plz guide.

Thanks .
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20130903/1068f858/attachment.html>

More information about the Snort-users mailing list