User Tools

Site Tools


сервис_snort

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
сервис_snort [2022/03/09 11:29]
val [Пример атаки с isp.un]
сервис_snort [2022/03/30 12:43] (current)
val [Debian/Ubuntu]
Line 10: Line 10:
 <​code>​ <​code>​
 root@server:​~#​ apt install snort root@server:​~#​ apt install snort
 +
 +!!! В визарде все по умолчанию ("не понимает"​ интерфейс bond1)
  
 root@server:​~#​ cat /​etc/​snort/​snort.debian.conf root@server:​~#​ cat /​etc/​snort/​snort.debian.conf
Line 16: Line 18:
 DEBIAN_SNORT_INTERFACE="​eth2"​ DEBIAN_SNORT_INTERFACE="​eth2"​
 #​DEBIAN_SNORT_INTERFACE="​eth1"​ #​DEBIAN_SNORT_INTERFACE="​eth1"​
 +#​DEBIAN_SNORT_INTERFACE="​bond1"​
 DEBIAN_SNORT_HOME_NET="​192.168.0.0/​16"​ DEBIAN_SNORT_HOME_NET="​192.168.0.0/​16"​
 #​DEBIAN_SNORT_HOME_NET="​any"​ #​DEBIAN_SNORT_HOME_NET="​any"​
Line 38: Line 41:
 ==== Debian/​Ubuntu ==== ==== Debian/​Ubuntu ====
 <​code>​ <​code>​
 +# less /​etc/​snort/​rules/​web-iis.rules
 +
 # tail -f /​var/​log/​auth.log | grep Red # tail -f /​var/​log/​auth.log | grep Red
 </​code>​ </​code>​
сервис_snort.1646814586.txt.gz · Last modified: 2022/03/09 11:29 by val