@foresthus:
Hi there,
…
Please give this hint.
It should be the variable "VRT_DNLD_URL" (snort_defs.inc or snort.inc or snort_check_for_rule_updates.php) which must to be changed. But what ist the new url?
thnx a lot.
;)
The Snort VRT has removed the rules tarball for Snort versions older than 2.9.7.2, so there is no URL to give you for the 2.9.7.0 version. With Snort, the version of the binary and the version of the rules tarball must match. A check is done by the binary to be sure they match up. This is not a pfSense problem, but is a decision of the Snort team.
You need to upgrade your pfSense to a 2.2.x version and then update Snort to version 2.9.7.3. By the way, version 2.9.7.5 of Snort was just released. I will be submitting an update for the pfSense package in the near future.
Bill