Windows 上的 Snort 动态引擎问题 [英] Snort dynamic engine issues on Windows

问题描述

我似乎无法找到这个问题的答案.有很多关于类似错误的主题，但它们都是基于 Linux 的.

I can't seem to find the answer to this issue. A lot of topics exist for similar errors but they are all Linux based.

我遇到的问题是，当尝试运行 Snort (snort.exe -v -I) 时，它不会捕获任何内容，但我认为这是因为我没有设置接口.运行 snort.exe -W 后，我找到了要使用的接口并在命令行中指定了它，但出现以下错误 - ERROR: Can't set DAQ BPF filter to '2'.

The issue I'm having is that when attempting to run Snort (snort.exe -v -I), it will capture nothing but I assume this is because I have not set an interface. After running snort.exe -W, I found the interface to use and specified this in the command line but I get the following error - ERROR: Can't set DAQ BPF filter to '2'.

我略过这个错误，尝试使用 -T 和 -c 测试 Snort 以指定配置文件，但它给出了以下错误 - 缺少/不正确的动态引擎库说明符.我在配置文件中找到了这一行，并将其从 /usr/local/snort_dynamicengine/libsf_engine.so 更改为 c:\Snort\lib\snort_dynamicengine\sf_engine.dll(正确的路径和文件名)但错误仍然存​​在.

I skipped past this error briefly to try and test Snort with -T and -c to specify the config file but it gives the following error - Missing/incorrect dynamic engine lib specifier. I located this line in the config file and changed it from /usr/local/snort_dynamicengine/libsf_engine.so to c:\Snort\lib\snort_dynamicengine\sf_engine.dll (the correct path and file name) but the error remains.

我记得几个月前在 Windows Server 2012 部署上安装 Snort 没有任何问题.

I remember installing Snort on a Windows Server 2012 deployment a couple of months back with no issues at all.

知道是什么导致了这个错误吗?

Any idea what is causing this error?

注意:我还更正了其他路径，即规则.

NOTE: I've also corrected the other paths i.e. rules.

推荐答案

我刚刚也遇到了这个问题，解决了删除一个/

I just had also the Problem, and solve it delete a single /

ERROR:: c:\snort\etc\snort.conf (246) Missing/incorrect dynamic engine lib specifie.

所以我

dynamicpreprocessor directory c:\snort\lib\snort_dynamicpreprocessor\ <---*

这个\"是错误的

这篇关于Windows 上的 Snort 动态引擎问题的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！