Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort OpenAppID RULES Detectors fail to download.

    Scheduled Pinned Locked Moved IDS/IPS
    8 Posts 6 Posters 2.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • brezlordB
      brezlord
      last edited by

      I anyone else having issues downloading Snort OpenAppID RULES Detectors. Looks like a bad MD5 checksum.

      Downloading file 'appid_rules.tar.gz'…
      Done downloading rules file.
      Snort OpenAppID RULES detectors file download failed.  Bad MD5 checksum.
      Downloaded Snort OpenAppID RULES detectors file MD5: 4a919586ee271f633a04b406b1332bf9
      Expected Snort OpenAppID RULES detectors file MD5: d4539caec45fdb0484ded9de593e0dc4
      Snort OpenAppID RULES detectors file download failed.  Snort OpenAppID RULES detectors will not be updated.

      Kind Regards,
      Simon

      1 Reply Last reply Reply Quote 0
      • denningsrogueD
        denningsrogue
        last edited by

        Yup, same issue.

        1 Reply Last reply Reply Quote 0
        • NogBadTheBadN
          NogBadTheBad
          last edited by

          Yup, same issue here.

          Starting rules update…  Time: 2017-12-10 18:54:15
          Downloading Snort VRT rules md5 file snortrules-snapshot-2990.tar.gz.md5...
          Checking Snort VRT rules md5 file...
          Snort VRT rules are up to date.
          Downloading Snort OpenAppID detectors md5 file snort-openappid.tar.gz.md5...
          Checking Snort OpenAppID detectors md5 file...
          Snort OpenAppID detectors are up to date.
          Downloading Snort OpenAppID RULES detectors md5 file appid_rules.tar.gz.md5...
          Checking Snort OpenAppID RULES detectors md5 file...
          There is a new set of Snort OpenAppID RULES detectors posted.
          Downloading file 'appid_rules.tar.gz'...
          Done downloading rules file.
          Snort OpenAppID RULES detectors file download failed.  Bad MD5 checksum.
          Downloaded Snort OpenAppID RULES detectors file MD5: 4a919586ee271f633a04b406b1332bf9
          Expected Snort OpenAppID RULES detectors file MD5: d4539caec45fdb0484ded9de593e0dc4
          Snort OpenAppID RULES detectors file download failed.  Snort OpenAppID RULES detectors will not be updated.
          Downloading Emerging Threats Open rules md5 file emerging.rules.tar.gz.md5...
          Checking Emerging Threats Open rules md5 file...
          Emerging Threats Open rules are up to date.
          The Rules update has finished.  Time: 2017-12-10 18:54:20

          Andy

          1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

          1 Reply Last reply Reply Quote 0
          • M
            mrzaz
            last edited by

            I also get problem with the APPID RULES download.

            According to logs it says:
              Downloading Snort OpenAppID RULES detectors md5 file appid_rules.tar.gz.md5…
              Checking Snort OpenAppID RULES detectors md5 file...
              There is a new set of Snort OpenAppID RULES detectors posted.
              Downloading file 'appid_rules.tar.gz'...
              Done downloading rules file.
              Snort OpenAppID RULES detectors file download failed.  Bad MD5 checksum.
              Downloaded Snort OpenAppID RULES detectors file MD5: 4a919586ee271f633a04b406b1332bf9
              Expected Snort OpenAppID RULES detectors file MD5: d4539caec45fdb0484ded9de593e0dc4
              Snort OpenAppID RULES detectors file download failed.  Snort OpenAppID RULES detectors will not be updated.

            And just to make sure, I manually downloaded the http://files.pfsense.org/openappid/appid_rules.tar.gz and http://files.pfsense.org/openappid/appid_rules.tar.gz.md5
            and then made a manual md5 checksum of the "appid_rules.tar.gz" and compared it to the downloaded one.

            DOWNLOADED:  d4539caec45fdb0484ded9de593e0dc4
            MANUAL MD5:      4a919586ee271f633a04b406b1332bf9

            Exactly the same as from the pfSense.  So either someone has modified the appid_rules.tar.gz after the checksum was created
            OR the appid_rules.tar.gz has been updated and someone has forgot to create a new updated md5 checksum file
            or possible that the the appid file has gone corrupted.

            Please correct this.

            The interesting part is that the appid file and the md5 file is stored at almost the same time. only 2 min apart.
            http://files.pfsense.org/openappid/
            appid_rules.tar.gz                                08-Dec-2017 20:46              788480
            appid_rules.tar.gz.md5                            08-Dec-2017 20:48                  33

            Best regards
            Dan Lundqvist
            MRZAZ.COM
            Stockholm, Sweden

            1 Reply Last reply Reply Quote 0
            • ivorI
              ivor
              last edited by

              Confirmed. I have notified the developers however I don't think it will be resolved until tomorrow. Thank you for reporting the issue.

              Need help fast? Our support is available 24/7 https://www.netgate.com/support/

              1 Reply Last reply Reply Quote 0
              • denningsrogueD
                denningsrogue
                last edited by

                The issue has been resolved.

                1 Reply Last reply Reply Quote 0
                • K
                  Kenton
                  last edited by

                  I know this has been solved previously, but I am now getting the same problem with the following error message.

                  Checking Snort OpenAppID RULES detectors md5 file…
                  There is a new set of Snort OpenAppID RULES detectors posted.
                  Downloading file 'appid_rules.tar.gz'...
                  Done downloading rules file.
                  Snort OpenAppID RULES detectors file download failed.  Bad MD5 checksum.
                  Downloaded Snort OpenAppID RULES detectors file MD5: 4a919586ee271f633a04b406b1332bf9
                  Expected Snort OpenAppID RULES detectors file MD5: d4539caec45fdb0484ded9de593e0dc4
                  Snort OpenAppID RULES detectors file download failed.  Snort OpenAppID RULES detectors will not be updated.

                  This has been the case for the past week, so I have been waiting to see if this will be corrected. So far it has not been.

                  1 Reply Last reply Reply Quote 0
                  • ivorI
                    ivor
                    last edited by

                    Mine updated fine. Try reinstalling the package.

                    Need help fast? Our support is available 24/7 https://www.netgate.com/support/

                    1 Reply Last reply Reply Quote 0
                    • First post
                      Last post
                    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.