This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Snort not running after update 9.709-3

Hello Guys,

Since last update to version 9.709-3 I do a regular error send from our SGM 115 stating "Snort not running".
This happens quite often. I searched in our logs and found under IPS something like:

Detection:
2022:04:06-14:09:29 astaro snort[2112]: Search-Method = AC-BNFA-Q
2022:04:06-14:09:29 astaro snort[2112]: Search-Method-Optimizations = enabled
2022:04:06-14:09:29 astaro snort[2112]: FATAL ERROR: /etc/snort//etc/snort/rules/astaro.rules(0) Unable to open rules file "/etc/snort//etc/snort/rules/astaro.rules": No such file or directory.
2022:04:06-14:09:35 astaro snort[2134]: Enabling inline operation
2022:04:06-14:09:35 astaro snort[2134]: Running in IDS mode
What is going on? How can I fix it?


This thread was automatically locked due to age.
Parents
  • Is IPS disabled or showing any issues in the log file for it besides what you posted? Are you doing any kind of direct database output for snort? 

    OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
    16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
    (Former Sophos UTM Veteran, Former XG Rookie)

Reply
  • Is IPS disabled or showing any issues in the log file for it besides what you posted? Are you doing any kind of direct database output for snort? 

    OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
    16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
    (Former Sophos UTM Veteran, Former XG Rookie)

Children