Instalasi Suricata

From OnnoWiki
Jump to navigation Jump to search

Siapkan Aplikasi Pendukung

Siapkan berbagai aplikasi pendukung sebelum menginstalasi suricata

sudo apt-get -y install libpcre3 libpcre3-dbg libpcre3-dev \
build-essential autoconf automake libtool libpcap-dev libnet1-dev \
libyaml-0-1 libyaml-dev zliblg zliblg-dev libcap-ng-dev libcap-ng0

di Ubuntu 10.04

sudo apt-get -y install libpcre3 libpcre3-dbg libpcre3-dev \
build-essential autoconf automake libtool libpcap-dev libnet1-dev \
libyaml-dev libcap-ng-dev libcap-ng0

Download htp secara manual

http://openinfosecfoundation.org/index.php/download-suricata
http://openinfosecfoundation.org/download/libhtp-0.2.3.tar.gz

Atau download & Install htp secara manual

cd /usr/local/src
wget http://www.openinfosecfoundation.org/download/libhtp-0.2.3.tar.gz
tar -xzvf libhtp-0.2.3.tar.gz
cd libhtp-0.2.3
./configure
make
make install

Jika kita ingin menjalankan kemampuan IPS yang ada di suricata (./configure --enable-nfqueue) ada baiknya mengaktifkan

sudo apt-get -y install libnetfilter-queue-dev libnetfilter-queue1 libnfnetlink-dev libnfnetlink0 libcap-ng0

Mengaktifkan IPS dapat dilakukan pada saat konfigurasi menggunakan perintah

./configure --enable-nfqueue

Suricata

Download suricata

http://www.openinfosecfoundation.org/index.php/download-suricata
http://www.openinfosecfoundation.org/download/suricata-1.0.2.tar.gz
cp suricata-1.0.2.tar.gz /usr/local/src
cd /usr/local/src
tar -xvzf suricata-1.0.2.tar.gz
cd suricata-1.0.2

atau

cd /usr/local/src
wget http://www.openinfosecfoundation.org/download/suricata-1.0.2.tar.gz
tar -xvzf suricata-1.0.2.tar.gz
cd suricata-1.0.2
./configure --enable-nfqueue
sudo mkdir /var/log/suricata/
make
make install


Referensi

Pranala Menarik