Install and configure snort in centos8 | cài đặt và triển khai snort trên centOS8
#snort #snortincentos #snortIDS #centOS8
Cài đặt và triển khai snort trên centOS 8 và triển khai phát hiện cảnh báo và drop gói tin
Configure snort in CentoS8
Hướng dẫn :
# thư viện cần thiết
dnf install -y gcc flex bison zlib* libxml2 libpcap* pcre* tcpdump git libtool curl daq libdnet
#devel
dnf –enablerepo=powertools install libdnet-devel
#developtools
dnf groupinstall -y “Development Tools”
#cài đặt gói libacp1.9.9 | install libacp1.9.9
wget http://www.tcpdump.org/release/libpcap-1.9.1.tar.gz
tar xzvf libpcap-1.9.1.tar.gz
cd libpcap-1.9.1
./configure && make && make install
#Instlal daq from snort
wget https://www.snort.org/downloads/snort/daq-2.0.7.tar.gz
tar xvfz daq-2.0.7.tar.gz
cd daq-2.0.7
autoreconf -f -i
./configure && make && make install
cd ..
Cài đặt | install LuaJT2.0.5
wget http://luajit.org/download/LuaJIT-2.0.5.tar.gz
tar xvzf LuaJIT-2.0.5.tar.gz
cd LuaJIT-2.0.5/
make && make install
cd ..
dnf install https://www.snort.org/downloads/snort/snort-2.9.18-1.centos8.x86_64.rpm
#khoá rules rũ | block rules old
sed -i ‘s/include $RULE_PATH/#include $RULE_PATH/’ /etc/snort/snort.conf
centos 8
hello everyone
if you flow my video you must change libcap1.8.1 not 1.9.1 baryard2 not support and outputfile : filenam snort.u2 you will get file u2 and barnyard2 can read this
Hello i fail in this 29:16 true is config daq_dir: /usr/local/lib/daq i fogot delete "daq_dir"