Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort-dev Package Update and Bug List

    Scheduled Pinned Locked Moved pfSense Packages
    1 Posts 1 Posters 9.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jamesdean
      last edited by

      snort-dev package: Update log.

      With this new version of snort you will be able to have complete control on
      blocked ips. That is to say, you will have a choice on how long exacly each snort rule
      will be blocked for.

      Goals:

      Main goal is to make adding options as simple as possible.

      Reduce code…... Done ….
      Make a framework.  Done ….
      Move code to OOP php.
      Add snortsam with custom patches Done ….

      2.9.1 pkg v. 2.0 progress

      Build snort to support IPV6 Done ….

      Move snort settings from xml to sqlite. Done ….

      Removed all other javascript frameworks Done ….
      Removed most of jquery… Done ….
      Added json/javascript framework. Done ….

      Finished: snortDB Done ….
      Finished: snortDBrules Done ….
      Finished: snort_alerts.php Done ….
      Finished: snort_barnyard.php Done ….
      Finished: snort_blocked.php Done ….
      Finished: snort_define_servers.php Done ….
      Finished: snort_gui.inc Done ….
      Finished: snort_head.inc Done ….
      Finished: snort_headbase.inc Done ….
      Finished: snort_help_info.php Done ….
      Finished: snort_interfaces.php Done ….
      Finished: snort_interfaces_edit.php Done ….
      Finished: snort_interfaces_global.p Done ….
      Finished: snort_interfaces_suppress Done ….
      Finished: snort_interfaces_suppress Done ….
      Finished: snort_interfaces_whitelis Done ….
      Finished: snort_interfaces_whitelis Done ….
      Finished: snort_json_get.php Done ….
      Finished: snort_json_post.php Done ….
      Finished: snort_new.inc Done ….
      Finished: snort_preprocessors.php Done ….
      Finished: snort_rules.php Done ….
      Finished: snort_rulesets.php Done ….
      Finished: Add Emerging Threats Pro Rules download option. Done ….

      Working: Add SnortSam GUI. Working ….
      Working: Create Alert/block jQuery tables for parsed logs. Working ….

      Hard Part Is Over
      Finished: Built ports of Snort 2.9.1 Done …
      Finished: Built ports of Barnyard2 2.1.9 Done …
      Finished: Built ports of SnortSam 2.9.0.3 Done …
      Finished: Created a custom SnortSam plugin patch for Snort 2.9.0.3 and submitted upstream diff to FreeBSD ports Done …

      TODO:

      Add ability to create and upload custom rules. working ….

      Add GUI update tab. working ….

      Add GUI to "Upload Custom Rules. working ….

      Add save the list of blocked IP by snort after a reboot. working ….
      Bugs:

      Major Changes:

      Add inline version of the snort package. working ….

      Add GUI options for Snort Inline. working ….

      Move My version of Global Blacklist into snort. working …. Code is done, Needs a GUI

      ==============

      [1.2.3-RELEASE]                                                                                                                                                                                                                                         [root@pfsense.local]/root/Pfsense_123x86_files(28): snort -V

      ,,_     -> Snort! <-
       o"  )~   Version 2.9.0.3 IPv6 GRE (Build 98) FreeBSD
        ''''    By Martin Roesch & The Snort Team: http://www.snort.org/snort/snort-team
                Copyright (C) 1998-2010 Sourcefire, Inc., et al.
                Using libpcap version 0.9.8
                Using PCRE version: 8.12 2011-01-15
                Using ZLIB version: 1.2.3

      ___   Built Date for Snort on Pfsense 1.2.3x86 is Jan 31, 2011.
      / f \  Orion IPS Patches Copyright (C) 2009-2011 Robert Zelaya.
      / p _
      /Sense
      _
      /  
         _
      _/  Using Snort.org dynamic plugins and SnortSam 2.69.

      [1.2.3-RELEASE]                                                                                                                                                                                                                                         [root@pfsense.local]/root/Pfsense_123x86_files(29): barnyard2 -V

      ______   -> Barnyard2 <-
      / ,,_  \  Version 2.1.9 (Build 263)
      |o"  )~|  By the SecurixLive.com Team: http://www.securixlive.com/about.php

      • '''' +  (C) Copyright 2008-2010 SecurixLive.

      Snort by Martin Roesch & The Snort Team: http://www.snort.org/team.html
                (C) Copyright 1998-2007 Sourcefire Inc., et al.

      ___   Built Date for Barnyard2 on Pfsense 1.2.3x86 is Jan 31, 2011.
      / f   \  Orion IPS Patches Copyright (C) 2009-2011 Robert Zelaya.
      / p _
      /Sense
      _/  
         _
      /  Using Snort.org dynamic plugins and SnortSam 2.69.

      [1.2.3-RELEASE]                                                                                                                                                                                                                                         [root@pfsense.local]/root/Pfsense_123x86_files(30): snortsam -V

      SnortSam, v 2.69.
      Copyright © 2001-2009 Frank Knobbe frank@knobbe.us. All rights reserved.
      Build Date for SnortSam on Pfsense 1.2.3x86 is Jan 31, 2011, Robert Zelaya

      ==============

      Main GUI

      Global Settings GUI

      RuleSets GUI

      Select Rules GUI

      Edit Sid GUI

      Wait MSG

      /frank@knobbe.us

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.