Barnyard2 Installation Linux: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
| Zeile 3: | Zeile 3: | ||
*apt-get install libpcap-dev libprelude-dev | *apt-get install libpcap-dev libprelude-dev | ||
=Edit /etc/snort/snort.conf= | =Edit /etc/snort/snort.conf= | ||
| + | *change | ||
<pre> | <pre> | ||
| − | # | + | #output unified2: filename snort.log, limit 128, nostamp, mpls_event_types, vlan_event_types |
| − | + | output unified2: filename snort.log, limit 128, mpls_event_types, vlan_event_types | |
| − | + | </pre> | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
=Compile and Install Barnyard2= | =Compile and Install Barnyard2= | ||
*git clone git://github.com/firnsy/barnyard2.git | *git clone git://github.com/firnsy/barnyard2.git | ||
Version vom 11. Oktober 2018, 12:50 Uhr
Vorbereitung
- apt-get install -y mysql-server libmysqlclient-dev mysql-client autoconf libtool
- apt-get install libpcap-dev libprelude-dev
Edit /etc/snort/snort.conf
- change
#output unified2: filename snort.log, limit 128, nostamp, mpls_event_types, vlan_event_types output unified2: filename snort.log, limit 128, mpls_event_types, vlan_event_types
Compile and Install Barnyard2
- git clone git://github.com/firnsy/barnyard2.git
- cd barnyard2
- ./autogen.sh
- CFLAGS='-lpthread'
- ./configure --with-mysql-libraries=/usr/lib/x86_64-linux-gnu
- apt-get install libdumbnet-dev
- ln -s /usr/include/dumbnet.h /usr/include/dnet.h
- ldconfig
- make
- make install
- cp etc/barnyard2.conf /etc/snort/
- touch /var/log/snort/barnyard2.waldo
Database Settings
- sudo mysql -u root -p
- mysql > create database snort;
- mysql > use snort;
- mysql > source /root/barnyard2/schemas/create_mysql
- mysql > CREATE USER 'snort'@'localhost' IDENTIFIED BY 'snort'*
- mysql > grant create, insert, select, delete, update on snort.* to 'snort'@'localhost';