mirror of
https://github.com/vimagick/dockerfiles
synced 2024-06-28 17:51:24 +00:00
fix snort
This commit is contained in:
parent
1d4812dd8f
commit
f1bf999ae3
@ -3,18 +3,17 @@
|
|||||||
#
|
#
|
||||||
|
|
||||||
FROM centos:7
|
FROM centos:7
|
||||||
MAINTAINER kev <noreply@easypi.pro>
|
MAINTAINER EasyPi Software Foundation
|
||||||
|
|
||||||
ENV DAQ_VERSION 2.0.7
|
ENV SNORT_VERSION=2.9.16
|
||||||
ENV SNORT_VERSION 2.9.16
|
ENV SNORT_URL=https://www.snort.org/downloads/snort/snort-${SNORT_VERSION}-1.centos7.x86_64.rpm
|
||||||
ENV BASE_URL https://www.snort.org/downloads
|
ENV RULES_URL=https://www.snort.org/downloads/community/community-rules.tar.gz
|
||||||
|
|
||||||
RUN set -xe \
|
RUN set -xe \
|
||||||
&& yum -y install epel-release libdnet \
|
&& yum -y install epel-release libdnet \
|
||||||
&& yum -y install ${BASE_URL}/snort/daq-${DAQ_VERSION}-1.centos7.x86_64.rpm \
|
&& yum -y install ${SNORT_URL} \
|
||||||
${BASE_URL}/snort/snort-${SNORT_VERSION}-1.centos7.x86_64.rpm \
|
|
||||||
&& mkdir -p /etc/snort/rules \
|
&& mkdir -p /etc/snort/rules \
|
||||||
&& curl -sSL ${BASE_URL}/community/community-rules.tar.gz | \
|
&& curl -sSL ${RULES_URL} | \
|
||||||
tar xz --strip 1 -C /etc/snort/rules/ community-rules/community.rules \
|
tar xz --strip 1 -C /etc/snort/rules/ community-rules/community.rules \
|
||||||
&& touch /etc/snort/rules/local.rules \
|
&& touch /etc/snort/rules/local.rules \
|
||||||
/etc/snort/rules/black_list.rules \
|
/etc/snort/rules/black_list.rules \
|
||||||
|
@ -3,7 +3,7 @@ snort
|
|||||||
|
|
||||||
![](https://badge.imagelayers.io/vimagick/snort:latest.svg)
|
![](https://badge.imagelayers.io/vimagick/snort:latest.svg)
|
||||||
|
|
||||||
[`Snort`][1] is an open source intrusion prevention system capable of real-time
|
[Snort][1] is an open source intrusion prevention system capable of real-time
|
||||||
traffic analysis and packet logging.
|
traffic analysis and packet logging.
|
||||||
|
|
||||||
```yaml
|
```yaml
|
||||||
|
@ -5,12 +5,12 @@
|
|||||||
# http://www.snort.org Snort Website
|
# http://www.snort.org Snort Website
|
||||||
# http://vrt-blog.snort.org/ Sourcefire VRT Blog
|
# http://vrt-blog.snort.org/ Sourcefire VRT Blog
|
||||||
#
|
#
|
||||||
# Mailing list Contact: snort-sigs@lists.sourceforge.net
|
# Mailing list Contact: snort-users@lists.snort.org
|
||||||
# False Positive reports: fp@sourcefire.com
|
# False Positive reports: fp@sourcefire.com
|
||||||
# Snort bugs: bugs@snort.org
|
# Snort bugs: bugs@snort.org
|
||||||
#
|
#
|
||||||
# Compatible with Snort Versions:
|
# Compatible with Snort Versions:
|
||||||
# VERSIONS : 2.9.11.1
|
# VERSIONS : 2.9.16
|
||||||
#
|
#
|
||||||
# Snort build options:
|
# Snort build options:
|
||||||
# OPTIONS : --enable-gre --enable-mpls --enable-targetbased --enable-ppm --enable-perfprofiling --enable-zlib --enable-active-response --enable-normalizer --enable-reload --enable-react --enable-flexresp3
|
# OPTIONS : --enable-gre --enable-mpls --enable-targetbased --enable-ppm --enable-perfprofiling --enable-zlib --enable-active-response --enable-normalizer --enable-reload --enable-react --enable-flexresp3
|
||||||
@ -244,10 +244,10 @@ config paf_max: 16000
|
|||||||
###################################################
|
###################################################
|
||||||
|
|
||||||
# path to dynamic preprocessor libraries
|
# path to dynamic preprocessor libraries
|
||||||
dynamicpreprocessor directory /usr/lib64/snort-2.9.11.1_dynamicpreprocessor/
|
dynamicpreprocessor directory /usr/lib64/snort-2.9.16_dynamicpreprocessor/
|
||||||
|
|
||||||
# path to base preprocessor engine
|
# path to base preprocessor engine
|
||||||
dynamicengine /usr/lib64/snort-2.9.11.1_dynamicengine/libsf_engine.so
|
dynamicengine /usr/lib64/snort-2.9.16_dynamicengine/libsf_engine.so
|
||||||
|
|
||||||
# path to dynamic rules libraries
|
# path to dynamic rules libraries
|
||||||
dynamicdetection directory /usr/local/lib/snort_dynamicrules
|
dynamicdetection directory /usr/local/lib/snort_dynamicrules
|
||||||
|
Loading…
Reference in New Issue
Block a user