jump to navigation

Menjalankan Snort di Backtrack May 31, 2013

Posted by puji in Catatan.
trackback

1. KONFIGURASI, /etc/snort/snort.conf
var HOME_NET
– dari ANY
– memjadi 10.1.1.8

EXTERNATL_NET
– dari ANY
– menjadi 10.1.0.0/16

Sesuaikan dengan kondisi lingkungan jaringan yang akan diamati

2. MENJALANKAN SNORT DAN MENAMPILKANNYA ALERT di CONSOLE

snort -q -A console -i wlan0 -c /etc/snort/snort.conf
snort -q -A console -i eth0 -c /etc/snort/snort.conf

3. MENJALANKAN SNORT DAN MENAMPILKANNYA ALERT di MySQL

3.1. Download dan install struktur table untuk snort di mysql
3.2. Ubah konfigurasi di /etc/snort/snort.conf

output database: log, mysql, user=snort password=******** dbname=snort host=localhost

3.3. Jalankan snort
snort -q -i eth0 -c /etc/snort/snort.conf

Nb:
Di laptop saya berhasil, nggak tau di laptop AndašŸ˜€

Comments»

No comments yet — be the first.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: