问题描述

我在Snort上遇到问题，我刚刚在R-Pi上安装了该程序.同一网络上的另外两台计算机可以成功ping通R-Pi.

I have a problem with Snort, I've just installed the program on a R-Pi. 2 other computers on the same network can ping the R-Pi with success.

但是我有一个想法，即snort能够以混杂模式运行，这意味着它可以查看本地网络中的所有流量...而无需在网络中内联运行它.当我尝试ping同一网络中的其他两台计算机时，Snort不会接听.

However I had the idea that snort was able to be run in Promiscuous mode meaning that it can see all traffic in a local network... without needing to run it inline in the network.When i try ping the other two computers in the same network Snort does not pick this up.

更改，我尝试过....

Changes i have tried....

规则集设置为-

alert icmp any any -> any any

配置文件设置为-

ipvar HOME_NET 192.168.43.0/32 (<this is my home network range)

推荐答案

如果您使用的是虚拟机，请确保将网络配置设置为桥接适配器和混杂模式在您的虚拟机中通过snort启用.

If you're using a virtual machine, make sure that your network configuration is setup as bridged adapter and promiscuous mode is enabled in your virtual machine with snort.

我正在使用虚拟盒子，它是这样的:

I'm using virtual box and this is how it looks like:

这篇关于Snort无法检测到其他设备的Ping的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持！