• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Snort custom.rules

Scheduled Pinned Locked Moved pfSense Packages
2 Posts 2 Posters 2.2k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • E
    edyyy13
    last edited by Feb 22, 2013, 11:05 AM Feb 22, 2013, 10:00 AM

    hi
    i would add rules in custom.rules but if i add any rule save it without error but if i would restart interface it's don't start
    :-[
    that exemple of my custom rule : alert tcp any 80 -> any any (msg:"HTTP trafic ";sid:9000010;)
    i don't know why ??

    1 Reply Last reply Reply Quote 0
    • M
      michelm
      last edited by Feb 23, 2013, 4:06 PM

      Did you check the Snort errors in the system logs?

      Btw, you have to set the classtype option in your custom rules.

      1 Reply Last reply Reply Quote 0
      1 out of 2
      • First post
        1/2
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
        This community forum collects and processes your personal information.
        consent.not_received