Topic: Anyone get Snort/ACID working on 5.6b7?

[Steve Lewis]

Hello,

I tried to install Snort/ACID on 5.6b7, but it didn't work. Anyone get this working for them on 5.6b7?

Steve

[Jaco Bongers]

Steve Lewis wrote:
>
> Hello,
>
> I tried to install Snort/ACID on 5.6b7, but it didn't work.
> Anyone get this working for them on 5.6b7?
>

As far as I know, the 2.4 kernel requires different firewall rules, so ACID will not work. Not too sure about snort. But I am reasonably sure we need updated packages for SME 5.6

Jaco

[Minh Tran-Ngoc]

Hello

I just finished the installation and configuration of Snort 1.9 with Demarc PureSecure 1.06 as front-end on 5.6b7. I was working on it for 3 days,  but it seems to work fine now.

Best regards

Minh

[Steve Lewis]

Hello

Which version of PureSecure did you use?

Did you integrate it into the templating system? Any chance of a "How to" on this?

Any additional info you may wish to share I would be grateful.


Steve

[Minh Tran-Ngoc]

Hello Steve

I used the latest version available, the 1.06.
I was able to integrate the PureSecure console into the SME template system. I can send you the modified templates files.

Regarding the HowTo, I have to find out exactly what I have done on my box which made the whole things work together.

Feel free to mail me directly if you have any questions

Best regards

Minh

[Graeme Fleming]

Nice work Minh, now how about the templates and howto

I want to setup a 5.6b7 box myself and install all my standard utils so a working Snort/Acid replacement is just what I am looking for.

Please feel free to email me directly or post to the list (which would be more helpful for everyone else).

TIA