[prev in list] [next in list] [prev in thread] [next in thread]
List: snort-users
Subject: Re: [Snort-users] barnyard not reading log files
From: Rajesh G S <rajeshgs () tevatel ! com>
Date: 2015-11-06 4:13:05
Message-ID: CA+L_8G_M_tJ0bATQ2PUQhgOSzQaf2U9vbrYuOoppPXfxx=tEgw () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/related)]
[Attachment #4 (multipart/alternative)]
Thank you for your reply,
Actually I too followed the same guide for
my installation but I don't know why BARNYARD reads the very first log
file but not the next generated log files,it opens SNORT.U2 spool files but
not reading the other log files.Need some guidance here.
Thank you!
On Fri, Nov 6, 2015 at 12:14 AM, janet-serpa <janet-serpa@empai.co.cu>
wrote:
>
>
>
> Hello,
>
> I have attached a document to you as a reference to configure
> snort, barnyard2 and mysql . This document was my guide .Hopefully it will
> be a great help for you. You must follow the steps that shows you the
> document.When he can solve your problem you can help me with my question.
>
>
> My question
>
> I have realized different tests on the network using nmap , whether snort
> generates some alerts, but nothing appeared. The problem is, that hence I
> do not know, how to know whether that functions good or not, the snort. I
> have configured the snort as NIDS. What can I do?
>
>
> Thank You
>
>
>
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222> \
> Animaciones GRATIS para tu correo
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222>
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222>
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222>
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222>
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222> \
> ”Haz clic aquĆ!
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222>
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222>
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222>
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222>
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222>
> <http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222>
>
[Attachment #7 (text/html)]
<div dir="ltr">Thank you for your reply,<div> \
</div><div> Actually I too followed \
the same guide for my installation but I don't know why BARNYARD reads the very \
first log file but not the next generated log files,it opens SNORT.U2 spool files but \
not reading the other log files.Need some guidance \
here.</div><div><br></div><div>Thank you! </div><div> \
</div></div><div class="gmail_extra"><br><div class="gmail_quote">On Fri, Nov 6, 2015 \
at 12:14 AM, janet-serpa <span dir="ltr"><<a href="mailto:janet-serpa@empai.co.cu" \
target="_blank">janet-serpa@empai.co.cu</a>></span> wrote:<br><blockquote \
class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">
<div style="MARGIN:5px 10px 0px;FONT-FAMILY:Arial;FONT-SIZE:12pt" bgcolor="#ffffff">
<table border="0" cellspacing="0" cellpadding="2" width="100%">
<tbody>
<tr>
<td style="DIRECTION:ltr;FONT-SIZE:12pt" width="100%">
<div style="PADDING-LEFT:2px">
<div>
<div> </div></div></div>
<div>
<div> </div>
<div style="FONT-FAMILY:Arial;FONT-SIZE:12pt" dir="ltr">
<div> </div>
<div style="PADDING-LEFT:2px">
<div>
<div><font color="#000000" face="Arial">Hello,</font></div>
<div><font color="#000000" face="Arial"></font> </div>
<div>
<div>
<div><font color="#000000" face="Arial"></font></div></div>
<div>
<div><span><font color="#000000" face="Arial"></font></span></div></div>
<div>
<div>
<div>
<div>
<div><font color="#000000" face="Arial"></font></div></div></div></div></div>
<div>
<div>
<div>
<div>
<div><font color="#000000"><font face="Arial">I have attached a document to you as a \
reference to configure snort, barnyard2 and mysql . This document was my guide \
.Hopefully it will be a great help for you. You must follow the steps that shows \
you the document.<span lang="en"><span>When he can</span> <span>solve</span> \
<span>your problem</span> <span>you can</span> <span>help me with</span> <span>my \
question.</span></span></font></font></div> <div><span lang="en"><span><font \
color="#000000" face="Arial"></font></span></span> </div> <div><span \
lang="en"><span><font color="#000000" face="Arial"></font></span></span> </div> \
<div><span lang="en"><span><font color="#000000" face="Arial">My \
question</font></span></span></div> <div><span lang="en"><span><font color="#000000" \
face="Arial"></font></span></span> </div> <div><span lang="en"><span>
<div style="FONT-FAMILY:monospace;COLOR:rgb(0,0,0);FONT-SIZE:13px"><font \
color="#000000"> <div><font color="#000000" size="3" face="Arial">I have realized \
different tests on </font><font color="#000000" size="3" face="Arial"><span \
lang="en"><span> the network using</span> <span>nmap , </span></span></font><font \
color="#000000" size="3" face="Arial">whether </font><font color="#000000" size="3" \
face="Arial">snort generates some alerts, but nothing appeared. The problem is, that \
hence I do not know, how to know whether that functions good or not, the snort. I \
have configured the snort as NIDS. What can I do?</font></div> <div><font size="3" \
face="Arial"> </font></div></font><font color="#000000"><br><font size="3" \
face="Arial"></font></font></div> <div \
style="FONT-FAMILY:monospace;COLOR:rgb(0,0,0);FONT-SIZE:13px"><font color="#000000" \
size="3" face="Arial">Thank \
You</font></div></span></span></div></div></div></div></div></div></div> <div \
style="FONT-FAMILY:Arial;FONT-SIZE:12pt" dir="ltr"> </div></div> <div> \
</div></div></div></td></tr> <tr>
<td width="100%">
<table cellspacing="0" cellpadding="0" width="100%">
<tbody>
<tr>
<td width="100%"></td>
<td valign="bottom" align="middle"></td></tr></tbody></table></td></tr></tbody></table><span>
<div>
<table title="Animaciones GRATIS para tu correo" border="0" cellspacing="0" \
cellpadding="0" width="580" align="center"> <tbody>
<tr>
<td style="PADDING-BOTTOM:0px;PADDING-LEFT:0px;PADDING-RIGHT:0px;PADDING-TOP:0px" \
colspan="2"> <table style="WIDTH:490px" border="0" cellspacing="0" cellpadding="0" \
width="490"> <tbody>
<tr>
<td style="PADDING-BOTTOM:0px;PADDING-LEFT:0px;PADDING-RIGHT:0px;PADDING-TOP:0px" \
title="Animaciones GRATIS para tu correo" align="right"><a \
style="TEXT-DECORATION:none" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
target="_blank"><span name="imgCache" border="0"><img style="BORDER-BOTTOM:medium \
none;BORDER-LEFT:medium none;BORDER-TOP:medium none;BORDER-RIGHT:medium none" \
border="0" src="cid:55EC27B5-4A95-4917-9471-EFA4016C7B80"> \
</span></a></td></tr></tbody></table></td></tr> <tr>
<td style="PADDING-BOTTOM:7px;PADDING-LEFT:0px;PADDING-RIGHT:0px;PADDING-TOP:0px" \
align="left"> <table style="WIDTH:500px" border="0" cellspacing="0" cellpadding="0" \
width="500" valign="middle" \
href="http://www.incredimail.com?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]">
<tbody>
<tr>
<td style="WIDTH:15px" width="15"></td>
<td style="WIDTH:310px" width="310"><a style="TEXT-DECORATION:none" \
title="Animaciones GRATIS para tu correo" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
target="_blank"><span \
style="FONT-FAMILY:Arial;COLOR:#2259a6;FONT-SIZE:19px;FONT-WEIGHT:bold">Animaciones \
GRATIS para tu correo</span></a> </td> <td style="WIDTH:130px" width="130">
<table style="WIDTH:120px;HEIGHT:35px" title="Animaciones GRATIS para tu correo" \
border="0" cellspacing="0" cellpadding="0" width="120" height="35"> <tbody>
<tr>
<td style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#e2fbb2" \
height="1"></td> <td style="LINE-HEIGHT:0;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#bcd5a7" \
height="1" colspan="3"><a style="WIDTH:100%;DISPLAY:block;min-height:100%" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
target="_blank"><span></span></a></td> <td \
style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#e2fbb2" \
height="1"></td></tr> <tr>
<td style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#91a184" \
height="1"></td> <td style="LINE-HEIGHT:0;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#e2fbb2" \
height="1" colspan="3"><a style="WIDTH:100%;DISPLAY:block;min-height:100%" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
target="_blank"><span></span></a></td> <td \
style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#bcd5a7" \
height="1"></td></tr> <tr>
<td style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:32px;FONT-SIZE:1px" bgcolor="#91a184" \
height="32"><a style="WIDTH:1px;DISPLAY:block;min-height:32px;TEXT-DECORATION:none" \
title="Animaciones GRATIS para tu correo" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
border="0" target="_blank"></a></td> <td \
style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:32px;FONT-SIZE:1px" bgcolor="#e2fbb2" \
height="32" border="0"><a style="WIDTH:100%;DISPLAY:block;min-height:100%" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
target="_blank"><span></span></a></td> <td style="HEIGHT:32px" bgcolor="#90c03a" \
height="32" align="middle"><a style="min-height:32px;TEXT-DECORATION:none" \
title="Animaciones GRATIS para tu correo" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
border="0" target="_blank"><span \
style="TEXT-ALIGN:center;LINE-HEIGHT:32px;DISPLAY:block;FONT-FAMILY:Arial;COLOR:black;FONT-SIZE:15px;VERTICAL-ALIGN:middle;FONT-WEIGHT:bold;TEXT-DECORATION:none" \
align="center"> ”Haz clic aquĆ!</span> </a></td> <td \
style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:32px;FONT-SIZE:1px" bgcolor="#e2fbb2" \
height="32"><a style="WIDTH:100%;DISPLAY:block;min-height:100%" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
target="_blank"><span></span></a></td> <td \
style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:32px;FONT-SIZE:1px" bgcolor="#bcd5a7" \
height="32"><a style="WIDTH:100%;DISPLAY:block;min-height:100%" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
target="_blank"><span></span></a></td></tr> <tr>
<td style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#91a184" \
height="1"></td> <td style="LINE-HEIGHT:0;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#e2fbb2" \
height="1" colspan="3"><a style="WIDTH:100%;DISPLAY:block;min-height:100%" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
target="_blank"><span></span><span></span></a></td> <td \
style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#bcd5a7" \
height="1"></td></tr> <tr>
<td style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#e2fbb2" \
height="1"></td> <td style="LINE-HEIGHT:0;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#91a184" \
height="1" colspan="3"><a style="WIDTH:100%;DISPLAY:block;min-height:100%" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
target="_blank"><span></span><span></span></a></td> <td \
style="LINE-HEIGHT:0;WIDTH:1px;HEIGHT:1px;FONT-SIZE:1px" bgcolor="#e2fbb2" \
height="1"></td></tr></tbody></table></td></tr></tbody></table></td></tr> <tr>
<td style="PADDING-BOTTOM:0px;PADDING-LEFT:0px;PADDING-RIGHT:0px;PADDING-TOP:0px" \
colspan="2"> <table style="WIDTH:510px" border="0" cellspacing="0" cellpadding="0" \
width="510"> <tbody>
<tr>
<td style="PADDING-BOTTOM:0px;PADDING-LEFT:0px;PADDING-RIGHT:0px;PADDING-TOP:0px" \
title="Animaciones GRATIS para tu correo" align="right"><a \
style="TEXT-DECORATION:none" \
href="http://www.incredimail.com/?id=621162&did=10501&ppd=2839,201207021127,10,[TypeID],[IM_UPN2]&rui=159526222" \
target="_blank"><span name="imgCache" border="0"><img style="BORDER-BOTTOM:medium \
none;BORDER-LEFT:medium none;BORDER-TOP:medium none;BORDER-RIGHT:medium none" \
border="0" src="cid:1CA3AB5D-FB5B-41D4-B1C0-550B6C76596A"> \
</span></a></td></tr></tbody></table></td></tr></tbody></table> <table border="0" \
cellspacing="0" cellpadding="0" width="100%" height="10"> <tbody>
<tr></tr>
<tr>
<td style="FONT-SIZE:10px"></td></tr></tbody></table></div>
<div style="LINE-HEIGHT:0;FONT-SIZE:0px"><img border="0" \
src="http://www2l.incredimail.com/gcontent/stamps/new2011/pixel.gif?upn=[IM_UPN2]" \
width="1" height="1"> </div></span></div></blockquote></div><br></div>
--001a1140ec24f277c70523d74ae5--
["butterfly_top.gif" (image/gif)]
["butterfly_bottom.gif" (image/gif)]
------------------------------------------------------------------------------
_______________________________________________
Snort-users mailing list
Snort-users@lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users
Please visit http://blog.snort.org to stay current on all the latest Snort news!
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic