CentOS 7: problem installing Module::IPTables-Parse (JSON::PP 2.27103)
Hi all,
I have installed snort 2.9.7(running as NIDS) on centos7 (desktop dell optiplex intel core i3) and now I have enabled IPTables and working on fwsnort so that it can parse snort rules to IPTables. I am facing problems executing ./fwsnort :: Code:
[root@localhost sbin]# ./fwsnort Code:
root@localhost sbin]# cpanm Module::IPTables-Parse Code:
root@localhost IPTables-Parse-1.1]# perl5.16.3 Makefile.PL regards, nm |
Quote:
Quote:
*What you get from this is: 0) query CPAN for the right name and 1) use "search.cpan.org" is you can't find it via the CLI. Quote:
0) Run 'cpan IPTables::Parse" properly, 1) Download the "perl-IPTables-Parse" source RPM from Fedora and build for your system, 2) Download PSAD from cipherdyne.com as it already includes "IPTables::Parse". 3) Download IPTables-Parse-1.1.tar.bz2 from cipherdyne.com. *Note #2 and #3 are really not advisable since these packages are way old and have not been updated since 2012. |
Quote:
regards, nm |
Quote:
0) Run 'cpan IPTables::Parse" properly, 1) Download the "perl-IPTables-Parse" source RPM from Fedora and build for your system, Quote:
Quote:
|
Code:
# cpanm IPTables::Parse that log file :: Code:
panm (App::cpanminus) 1.6922 on perl 5.016003 built for x86_64-linux-thread-multi I work for an educational institute and like I wrote in my previous post that I am behind a proxy and have a dns server and nearly thousand users.And they want to implement IPS in Intranet. Sir, honestly I don't have any idea about "fwsnort pitfalls", I read through many docs (for open source IPS) and found some solution, fwsnort is one of them which can be integrated with snort to parse its rules to IPTables, others are --snortsam,suricata. I selected fwsnort just because I have snort IDS working. Would you please consider my request and tell me about fwsnort pitfalls. regards, nm |
Quote:
Quote:
|
Quote:
Quote:
regards, nm |
Quote:
- Linux distribution and release, - which software + versions you installed, - any steps you took to install software if they deviate from the software instructions, and - the errors you got, and - what you have tried to fix them. |
yes Sir I will, actually I am stuck because I can't find binary of snort in my system. And Sir please consider my request an advise me commercially available software products for firewall, IPS/IDS, which you think are best for an Institutions network as we are growing fast and expecting 5000-10000 users or may be more in next 3-5 years.
best regards, nm |
Quote:
Quote:
|
Apologies, I never meant to disrespect you.
|
Likewise I do not see you showing any disrespect. So, will you be continuing with fwsnort or will you move to Snort itself?
|
I am not going with fwsnort, I will try "snortsam" first, if it works all good, otherwise---suricata.
|
OK, good luck!
|
thanks!
|
All times are GMT -5. The time now is 09:29 PM. |