Korban: Install SNORT

From OnnoWiki
Jump to navigation Jump to search

Cek Interface

ifconfig -a

Biasanya ens18 / enp0s3 / enp0s4 / enp0s5 / enp0s8 dst

Install

apt update
apt install oinkmaster snort snort-common snort-rules-default snort-doc


Cek

snort -C

Jalankan

killall snort
killall snort
snort -c /etc/snort/snort.conf -l /var/log/snort/ -K ascii -D

Atau kalau menggunakan interface & IP lain

snort -c /etc/snort/snort.conf -l /var/log/snort/ -S HOME_NET=[192.168.0.0/24] -i ens18 -K ascii -D
snort -c /etc/snort/snort.conf -l /var/log/snort/ -h 192.168.0.0/24 -i ens18 -K ascii -D