Table snort2c doesn't exist error after gitsync
-
Thinking this is for a snort release that is coming down the pipe for 2.0. After a recent gitsync, i'm getting the below error when trying to start snort. After looking thru the rcs.pfsense.org log, I came across this change https://rcs.pfsense.org/projects/pfsense/repos/mainline/commits/ee21b736077ce5678692fb3c39ccbd755ea0a640. For now i'll manually edit the filter.inc to resolve my issue.
snort[25029]: FATAL ERROR: pf.conf => Table snort2c don't exists in packet filter
-
It's part of the prep for the new snort version.
-
that's what i figured :-) Looking forward to it
-
The snort2c table should be back in the current snapshot (at least i386… It may have been too late for amd64, but it'll be in the next one)
-
mmhhh… in version RC1 dated 2/28/2011 is not still there yet, this was blocking a test machine where we were evaluating RC1 (doesn't boot correctly, just inusable)...
When will be released the new update?
Thanks,
Michele -
Update to the latest 2.0 RC snapshot the table should be there now.
Robert
-
Its been in the snapshots for at least a week or 2 now.
-
i just updated to the rc2.0 snapshot yesterday, snort doesn't seem to be blocking anything, the table is present, however snort2c im assuming there's a script that goes with it isn't present. snort's running, logging the alerts, there is pretty heavy traffic on the network and maybe 15 or so 1-3 priority alerts per hour, i've tried to find as much info as i can for the rc2 snort, but aside from barnyard2 not having the mysql db output plugin i can't find much else, is snort2c/blocking supposed to be working in the rc?