Installing the Snort Sensor Components
This section walks you through the steps in building the Snort Sensor from scratch. You will configure, compile, and install most packages as you did with the server and console.
Again, it is important to follow the steps in this guide in consecutive order. Some of the packages must have another package installed for them to compile and install. It is important to have these dependencies satisfied; if they are not the installation may not function as expected.
Installing libpcap
Snort has no native packet capture facility; it requires an external packet sniffing library, libpcap. libpcap is responsible for grabbing packets directly from the network interface card. It makes the raw packet capture facility ...
Get Intrusion Detection with Snort now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.