LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)
-   -   problem with snort, error when starting barnyard2 (https://www.linuxquestions.org/questions/linux-newbie-8/problem-with-snort-error-when-starting-barnyard2-4175511332/)

l33y 07-16-2014 08:14 PM
problem with snort, error when starting barnyard2
 
I am trying to configure Snort for the first time. My OS is Linux Lubuntu 14.04. I followed all the steps in online tutorials. I have configured snort, barnyard2, snortrules 2960 and daq-2.0.2, and edited various configuration files. I also configured snort report. However I am unable to get any information to my snort report. I am able to start and run snort, getting up to the message that says "Commencing packet processing." But barnyard2 does not appear to run. I get an error when trying to start barnyard2 using the command:

Quote:
sudo barnyard2 -c /usr/local/snort/etc/barnyard2.conf -d /var/log/snort -f snort.u2 -w /var/log/snort/barnyard2.waldo
Here is the error generated (And for some weird reason, I am getting an an empty file (zero bytes) when I try to pipe the entire output of aforementioned command to a file.):

Quote:
ERROR: Unable to open Generator file "/usr/local/snort/etc/gen-msg.map": No such file or directory
ERROR: [Barnyard2Init()]failed while processing [/usr/local/snort/etc/gen-msg.map]
Fatal, error, quitting
The gen-msg.map file does exist though.

l33y 07-16-2014 09:06 PM
Actually, the gen-msg.map was located in the wrong directory. I moved it to the correct directory, and barnyard2 now runs, I just don't see anything going into the web browser based snortreport. Any help is appreciated.


All times are GMT -5. The time now is 10:34 AM.