[Snort-users] why there is netmap module in daq but doesn't has netmap in doc ?

Dorian ROSSE dorianbrice at hotmail.fr
Fri May 17 14:46:10 EDT 2019


Hello I have enabled all network devicer in my linux-headers-4.15.0-50/ then linux-headers-4.15.0-50-generic/ too my laster kernel downloaded but I again fail to install netmap which all my kernels :(
________________________________
De : Al Lewis (allewi) <allewi at cisco.com>
Envoyé : mercredi 15 mai 2019 20:19
À : Dorian ROSSE; snort-users at lists.snort.org
Objet : Re: [Snort-users] why there is netmap module in daq but doesn't has netmap in doc ?


Have you looked at the README file included with the DAQ download?



Netmap Module

=============



The netmap project is a framework for very high speed packet I/O.  It is

available on both FreeBSD and Linux with varying amounts of preparatory

setup required.  Specific notes for each follow.



    ./snort --daq netmap -i <device>

            [--daq-var debug]



If you want to run netmap in inline mode, you must craft the device string as

one or more interface pairs, where each member of a pair is separated by a

single colon and each pair is separated by a double colon like this:



    em1:em2



or this:



    em1:em2::em3:em4



Inline operation performs Layer 2 forwarding with no MAC filtering, akin to the

AFPacket module's behavior.  All packets received on one interface in an inline

pair will be forwarded out the other interface unless dropped by the reader and

vice versa.



IMPORTANT: The interfaces will need to be up and in promiscuous mode in order to

function ('ifconfig em1 up promisc').  The DAQ module does not currently do

either of these configuration steps for itself.







From: Snort-users <snort-users-bounces at lists.snort.org> on behalf of Dorian ROSSE via Snort-users <snort-users at lists.snort.org>
Reply-To: Dorian ROSSE <dorianbrice at hotmail.fr>
Date: Wednesday, May 15, 2019 at 12:14 PM
To: "snort-users at lists.snort.org" <snort-users at lists.snort.org>
Subject: [Snort-users] why there is netmap module in daq but doesn't has netmap in doc ?



Hello everybody,


Why there is netmap module in daq but doesn't has netmap in doc ?

Thank you in advance to lighter me,

Regards.


Dorian ROSSE.



Provenance : Courrier<https://go.microsoft.com/fwlink/?LinkId=550986> pour Windows 10


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20190517/1e10feb1/attachment.html>


More information about the Snort-users mailing list