How to install snort3 from github

First, you must clone the repository:

git clone https://github.com/snort3/snort3.git
cd snort3

Now, install snort2 dependencies and some dependencies that snort2 does not use:

sudo apt build-dep snort
sudo apt install libhwloc-dev libluajit-5.1-dev libunwind-dev 

Now, procced to compile the project:

./configure_cmake.sh
cd build
make

Probably you will see the following issue:

daq_dlt.h: No such file or directory

This happend, because you need a newer labdaq version (the version installed as dependence from snort is older).

git clone https://github.com/snort3/libdaq.git
cd libdaq
./bootstrap
./configure
make
sudo make install

Now, come back to snort3 folder and try to compile it again. Probably you will see this issue:

undefined reference to daq_version_string'

This appears because two versions of daq are installed (repository and github version). 
To solve it, like is reported here just remove the older version:

apt remove libdaq-dev

Now execute the following:

/usr/local/snort/bin/snort
/usr/local/snort/bin/snort: error while loading shared libraries: libdaq.so.3: cannot open shared object file: No such file or directory

sudo ldconfig   
/usr/local/snort/bin/snort --version

   ,,_     -*> Snort++ <*-
  o"  )~   Version 3.0.3 (Build 5)
   ''''    By Martin Roesch & The Snort Team
           http://snort.org/contact#team
           Copyright (C) 2014-2020 Cisco and/or its affiliates. All rights reserved.
           Copyright (C) 1998-2013 Sourcefire, Inc., et al.
           Using DAQ version 3.0.0
           Using LuaJIT version 2.1.0-beta3
           Using OpenSSL 3.0.0-alpha2-dev 
           Using libpcap version 1.8.1
           Using PCRE version 8.39 2016-06-14
           Using ZLIB version 1.2.11
           Using LZMA version 5.2.2


Comments

Post a Comment

Popular posts from this blog

How to install Matlab without GUI

If you want to install Matlab in a server, probably you don't have a GUI. To run the installer you need previosly configurate silent mode: ./install -mode silent Preparing installation files ... Installing ... (Nov 03, 2016 10:53:02) ################################################################## (Nov 03, 2016 10:53:02) (Nov 03, 2016 10:53:03) When running the installer with an input file, you must accept the license agreement by setting the agreeToLicense option to yes. (Nov 03, 2016 10:53:03) Exiting with status -2 (Nov 03, 2016 10:53:07) End - Unsuccessful. The previous error is because we need configurate all options, like if you are agree with the license agreement, enter the licence key, etc. To do this, you need to edit  installer_input.txt and  activate.ini files: In activate.ini these are the lines that you need configurate: isSilent=true activateCommand=activateOffline licenseFile=/root/Matlab_R2016a_glnxa64.lic In installer_input.txt these ...
Read more

How to fix Android when developer options are not available for this user

Image
I have an Android One with Oreo version and suddenly my Android rebooted and after that it started to behave strangely: 1) Notification section doesn't work. I can't see notifications from my apps and the arrow and the screw icon to settings access don't work. 2) As I can't access to the notification area, I can't enable Use USB to Transfer Files to access to my phone memory. 3) I can't access to developer mode (I before active it with a lot of taps over Build number). Clicking on developer options just shows developer options are not available to this user. 4) I can't update or install the apps on google play. They freeze on Download pending... message 5) Home and Switch buttons don't work. They light up and vibrate when I tap them but they do nothing. This issue is apparently related to a deconfiguration of user accounts. To fix it, you need re-setup the users. As you can't access to the user manager (you are in guest mode ...
Read more

Exception: Could not find a default OpenFlow controller in Mininet

If you try to run a mininet script like this  , maybe you will get this problem if you are under Ubuntu. Exception: Could not find a default OpenFlow controller  This is trigger because your system don't find a default controller . To enable it just add the first line and add the controller argument to net variable like the second line: from mininet.node import OVSController net = Mininet(topo=topo,host=CPULimitedHost, link=TCLink,controller = OVSController) Now, you will get the following error: c0 Cannot find required executable ovs-controller. Please make sure that it is installed and available in your $PATH: (/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin) ovs-controller is a legacy name. You need to be sure that you has it. sudo apt-get install openvswitch-testcontroller sudo cp /usr/bin/ovs-testcontroller /usr/bin/ovs-controller If you run it again, you should kill ovs-testcontroller first to avoid this: Exception: Please s...
Read more