Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort 2.9.2.3 pkg v. 2.5.4, Custom Rules and THX

    Scheduled Pinned Locked Moved pfSense Packages
    1 Posts 1 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      judex
      last edited by

      Hi Community!

      Yesterday I upgraded Snort after some time I had an older version running.
      Big "Thank You!" to the developers for implementing the IPS Policy Selection like PulledPork provides. It makes things much easier for people, who are not so involved. There were also other big improvements made during the last weeks. Great.

      One thing I just want to report again is the custom.rules category form. I am still not able to paste a rule there. Everytime it is saved the system comes up with an error, that the rule options should be put in "(" and ")". I have them there and I am able to use my rules with a workaround (include my.rule in advanced processing options). The rule gets saved in the file custom.rules under the snort interface directory but with retuns after each line just as they are shown in the form. Putting the rule directly in that file also does not work. It gets deleted (or cleared to be exactly) after snort restart. I think it was working in a previous version.

      Maybe someone could look over that somedays.

      Best wishes,

      Judex

      2.1-RELEASE (amd64)
      built on Wed Sep 11 18:17:48 EDT 2013
      FreeBSD 8.3-RELEASE-p11

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.