Snort refused to start after this mornings update



  • My system updates the snort rules (pay also) every 6 hours and this morning after a 615 boot, it updated the 'Snort GPLv2 Community Rules' only.  Snort was running in Services, but I couldn't get it to start on WAN in Services Snort Interfaces.  After I unchecked all rules, it started in on WAN in Services Snort Interfaces.  However, the entire pfSense server is continuously locking up.  I can't get in via 192.168.1.1 or sshd terminal.  The last time I restarted it, I stopped snort all together and it has been running continuously.  I was wondering if a bad snort rule could cause this?


Log in to reply