[Snort-users] receiving only ICMP packets and no alert are generated in snort 3

Divyanshu Banerjee divyanshubanerjee1 at gmail.com
Fri Dec 14 00:43:28 EST 2018


I am receiving only ICMP packets,
I have used port mirroring (SPAN) to transfer the packets to my snort
machine

this is the command using in snort 3
( sudo snort -c /usr/local/etc/snort/snort.lua -R
/usr/local/etc/snort/rules/local.rules -R
/usr/local/etc/snort/rules/snort3-community.rules -i eth0 -A alert_csv -s
65535 -k none -l /var/log/snort
)

i have been receiving this message
lua detector odp_client_QUIC.lua: error validating
/usr/local/lib/odp/libs/DetectorCommon.lua:190: attempt to index global
'gDetector' (a nil value)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20181214/3c8d0de6/attachment.html>


More information about the Snort-users mailing list