aboutsummaryrefslogtreecommitdiff
path: root/net/snort3
Commit message (Collapse)AuthorAge
* snort3: update to 3.1.50.0John Audia2022-12-22
| | | | | | | | | | Upstream bump Build system: x86_64 Build-tested: bcm2711/RPi4B Run-tested: bcm2711/RPi4B Signed-off-by: John Audia <therealgraysky@proton.me>
* snort3: update to 3.1.49.0John Audia2022-12-22
| | | | | | | | | | Upstream bump Build system: x86_64 Build-tested: bcm2711/RPi4B Run-tested: bcm2711/RPi4B Signed-off-by: John Audia <therealgraysky@proton.me>
* snort3: minor tweaks to local.luaJohn Audia2022-12-22
| | | | | | | | | * Use Boolean true for enable inline mode which is more intuitive that older '' * Add skeleton section for openappid since it has been merged[1] 1. https://github.com/openwrt/packages/commit/2d4e7d5fd343652d0852337184d56522ef5af83d Signed-off-by: John Audia <therealgraysky@proton.me>
* snort3: unified configs: local.lua and homenet.luaJohn Audia2022-12-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit adds /etc/snort/local.lua and /etc/snort/homenet.lua for user defined config options which is more simplistic than modifying upstream files directly. That can be tedious and decisive to maintain in sync with upstream changes. The init script has been adjusted accordingly. Acknowledgment to amish who maintains the Arch Linux snort-nfqueue package[1] for these ideas and initial code. Another modification is dropping the following args in the call to /usr/bin/snort by the init system as these options are provided in /etc/snort/local.lua: * --daq-dir /usr/lib/daq/ * -A "$alert_module" Instructions to configure snort3: 1. Edit /etc/snort/homenet.lua and redefine HOME_NET and EXTERNAL_NET, for example: HOME_NET = [[ 10.9.8.0/24 192.168.1.0/24 ]] EXTERNAL_NET = "!$HOME_NET" 2. Edit /etc/snort/local.lua to setup options unique to your use case of snort. The default ones I included should be sane for the role of IDS (alert only), but users may easily uncomment some options therein to use IPS (drop) mode. 3. Install or symlink rules to /etc/snort/rules/snort.rules and optionally edit /etc/snort/local.lua to define extra rules files if not using a unified 'snort.rules' References: 1. https://aur.archlinux.org/packages/snort-nfqueue Signed-off-by: John Audia <therealgraysky@proton.me>
* snort3: update to 3.1.48.0-1John Audia2022-12-06
| | | | | | | | | | Had to add a patch to allow builds of targets containing '+' in their dir name Build system: x86_64 Build-tested: bcm2711/RPi4B Run-tested: bcm2711/RPi4B Signed-off-by: John Audia <therealgraysky@proton.me>
* snort3: update to 3.1.47.0-1John Audia2022-11-29
| | | | | | | | Build system: x86_64 Build-tested: bcm2711/RPi4B Run-tested: bcm2711/RPi4B Signed-off-by: John Audia <therealgraysky@proton.me>
* snort3: update to 3.1.29.0W. Michael Petullo2022-05-14
| | | | Signed-off-by: W. Michael Petullo <mike@flyn.org>
* snort3: update to 3.1.18.0W. Michael Petullo2021-12-16
| | | | Signed-off-by: W. Michael Petullo <mike@flyn.org>
* net/snort3: Include default configs and snort2luaMichal Hrusecky2021-07-22
| | | | | | | | Include default configuration files to have something to start from. Also include snort2lua to help convert snort2 rules to snort3 to also help with bootstrapping the configuration. Signed-off-by: Michal Hrusecky <michal.hrusecky@turris.com>
* treewide: back to cmake.mkRosen Penev2021-06-12
| | | | | | Ninja was merged to base and therefore we can now use normal cmake.mk Signed-off-by: Rosen Penev <rosenp@gmail.com>
* snort3: update to 3.1.4.0W. Michael Petullo2021-05-11
| | | | Signed-off-by: W. Michael Petullo <mike@flyn.org>
* treewide: build CMake projects with NinjaRosen Penev2021-03-27
| | | | | | | | | | | | | | | | | | | | faster to compile. A small selection of packages was tested going from: Executed in 696.30 secs fish external usr time 82.98 mins 395.00 micros 82.98 mins sys time 9.02 mins 0.00 micros 9.02 mins to: Executed in 592.20 secs fish external usr time 84.84 mins 361.00 micros 84.84 mins sys time 8.85 mins 57.00 micros 8.85 mins Tested by running make -j 12 and wiping staging/build_dir/target_x Signed-off-by: Rosen Penev <rosenp@gmail.com>
* libdaq3,snort3: install/use libdaq3 in its own dirEneas U de Queiroz2021-02-24
| | | | | | | | | | | If used with default paths, libdaq 2.x and libdaq 3.x will overwrite some of the other version's files. Install them in different places to avoid trouble. Snort is the only package that uses libdaq, so update it at the same time to avoid creating a failing commit. Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
* snort3: update to 3.1.0.0W. Michael Petullo2021-01-31
| | | | Signed-off-by: W. Michael Petullo <mike@flyn.org>
* snort3: require new libdaq3 packageW. Michael Petullo2020-11-22
| | | | | | | | Snort 3.0.3-1 requires libdaq 3.0.0-beta1, but this version is no longer compatible with Snort 2. Thus OpenWrt now provides both a libdaq and libdaq3 package. This modifies the snort3 package to require the latter. Signed-off-by: W. Michael Petullo <mike@flyn.org>
* snort3: update to 3.0.3-1W. Michael Petullo2020-11-19
| | | | Signed-off-by: W. Michael Petullo <mike@flyn.org>
* [Snort3/Snort+] Fix Big-Endian compile issuesDonald Hoskins2020-07-04
| | | | Signed-off-by: Donald Hoskins <grommish@gmail.com>
* snort3: Clean up MakefileRosen Penev2019-09-21
| | | | | | | | Removed PKG_FIXUP and PKG_INSTALL. They are both unnecessary. Fixed license information. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* treewide: add PKG_CPE_ID for better cvescanner coverageJan Pavlinec2019-09-17
| | | | Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
* snort3: ignore liblzma if presentW. Michael Petullo2019-04-19
| | | | Signed-off-by: W. Michael Petullo <mike@flyn.org>
* snort3: Remove lzma dependencyRosen Penev2019-04-01
| | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* snort3: new packageW. Michael Petullo2019-03-30
Signed-off-by: W. Michael Petullo <mike@flyn.org>
Powered by cgit, Themed by Ted Yin.