This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPS stopped to work - file too short

Hi,

yesterday (sunday) at 3 am SNORT stopped to work with the result that internal nets couldn't reach Internet anymore. In the logs I found

FATAL ERROR: Failed to load /usr/lib/snort/so_rules//file-java.so: /usr/lib/snort/so_rules//file-java.so: file too short

Disabling IPS gave Internet back to local nets. No need to say that nothing was done at UTM level since weeks.

If someone had an idea on why does this suddenly happened, what does it mean, and finally how to solve it.

Thanks, Daniel



This thread was automatically locked due to age.
Parents Reply
  • I *think* it had something to do with repository accessibility depending on where in the world the UTM is located.  Not making excuses, just stating what I believe the culprit was/is.  Slight smile

    Redundancy is such a norm now, even for us home users.  I have backups for my backups, lol.

    OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
    16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
    (Former Sophos UTM Veteran, Former XG Rookie)

Children
No Data