[Oisf-users] suricata does not start in a script
Peter Manev
petermanev at gmail.com
Tue May 5 19:38:16 UTC 2015
On Tue, May 5, 2015 at 9:27 PM, James Moe <jimoe at sohnen-moe.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On 05/05/2015 12:34 AM, Andreas Moe wrote:
>> The first problem i would address is "4/5/2015 -- 16:27:03 -
>> <Error> - [ERRCODE: SC_ERR_BPF(127)] - bpf compilation error syntax
>> error" seems like this is hindering suricata from start. What is
>> your BPF filter?
>>
> That's the problem: There is no BPF filter.
> The script version seems to be reading " | tee
> /usr/local/var/log/suricata/verbose.log" (or any other text) as a BPF
> filename. Why would suricata do that?
What is the purpose of ".... | tee ${LOG}/verbose.log" ?
>
> - --
> James Moe
> moe dot james at sohnen-moe dot com
> 520.743.3936
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2
>
> iEYEARECAAYFAlVJGZQACgkQzTcr8Prq0ZMNLACgiFLEAg2/PVdeR4EyTPfvZkes
> X9AAn3oykrp4H1pxylWJfdIaOJ1ZzgYo
> =WX6b
> -----END PGP SIGNATURE-----
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> Suricata User Conference November 4 & 5 in Barcelona: http://oisfevents.net
--
Regards,
Peter Manev
More information about the Oisf-users
mailing list