[Oisf-users] Suricata-IDS on Windows server 2008 R2.
Jason Long
hack3rcon at yahoo.com
Sat Feb 27 07:17:45 UTC 2016
Hello.I installed Suricata on Windows server 2008 R2 and use below command to run it :
suricata.exe -c suricata.yaml -i 185.8.173.190
but, I got some errors like :
C:\Program Files (x86)\Suricata>suricata.exe -c suricata.yaml -i IP27/2/2016 -- 10:45:12 - <Info> - translated 185.8.173.190 to pcap device \Device\NPF_{54BA3501-BE12-4BC3-A9BF-4537F41C5B89}27/2/2016 -- 10:45:12 - <Notice> - This is Suricata version 2.1beta4 RELEASEcygwin warning: MS-DOS style path detected: C:\\Program Files (x86)\\Suricata\\log\\ Preferred POSIX equivalent is: /Suricata/log/ CYGWIN environment variable option "nodosfilewarning" turns off this warning. Consult the user's guide for more details about POSIX paths: http://cygwin.com/cygwin-ug-net/using.html#using-pathnames27/2/2016 -- 10:45:12 - <Warning> - [ERRCODE: SC_ERR_SYSCALL(50)] - Failure when trying to get MTU via ioctl: 2227/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\botcc.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\botcc.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\ciarmy.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\ciarmy.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\compromised.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\compromised.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\drop.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\drop.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\dshield.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\dshield.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-activex.rules:No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-activex.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-attack_response.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-attack_response.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-chat.rules: Nosuch file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-chat.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-current_events.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-current_events.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-dns.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-dns.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-dos.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-dos.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-exploit.rules:No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-exploit.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-ftp.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-ftp.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-games.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-games.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-icmp_info.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-icmp_info.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-imap.rules: Nosuch file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-imap.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-inappropriate.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-inappropriate.rules
27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-malware.rules:No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-malware.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-misc.rules: Nosuch file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-misc.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-mobile_malware.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-mobile_malware.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-netbios.rules:No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-netbios.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-p2p.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-p2p.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-policy.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-policy.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-pop3.rules: Nosuch file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-pop3.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-rpc.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-rpc.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-scada.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-scada.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-scan.rules: Nosuch file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-scan.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-shellcode.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-shellcode.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-smtp.rules: Nosuch file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-smtp.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-snmp.rules: Nosuch file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-snmp.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-sql.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-sql.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-telnet.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-telnet.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-tftp.rules: Nosuch file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-tftp.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-trojan.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-trojan.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-user_agents.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-user_agents.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-voip.rules: Nosuch file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-voip.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-web_client.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-web_client.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-web_server.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-web_server.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-web_specific_apps.rules: No such file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-web_specific_apps.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\emerging-worm.rules: Nosuch file or directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\emerging-worm.rules27/2/2016 -- 10:45:13 - <Error> - [ERRCODE: SC_ERR_OPENING_RULE_FILE(41)] - opening rule file C:\\Program Files (x86)\\Suricata\\rules\\tor.rules: No such fileor directory.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NO_RULES(42)] - No rules loaded from C:\\Program Files (x86)\\Suricata\\rules\\tor.rules27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_FOPEN(44)] - Error openingfile: "C:\Program Files (x86)\Suricata\\\threshold.config": No such file or directory27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_NOT_SUPPORTED(225)] - Eve-log support not compiled in. Reconfigure/recompile with libjansson and its development files installed to add eve-log support.27/2/2016 -- 10:45:13 - <Warning> - [ERRCODE: SC_ERR_SYSCALL(50)] - Failure when trying to get MTU via ioctl: 2227/2/2016 -- 10:45:13 - <Notice> - all 7 packet processing threads, 4 management threads initialized, engine started.
Any idea?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20160227/ae7b9677/attachment-0001.html>
More information about the Oisf-users
mailing list