Next we want to install the pre-requisites that are specific to peopl sudo apt-get install-yllat 5.1-dev pkg-config cons

[answerhappygod]

Next We Want To Install The Pre Requisites That Are Specific To Peopl Sudo Apt Get Install Yllat 5 1 Dev Pkg Config Cons 1 (21.42 KiB) Viewed 23 times

Next We Want To Install The Pre Requisites That Are Specific To Peopl Sudo Apt Get Install Yllat 5 1 Dev Pkg Config Cons 2 (27.77 KiB) Viewed 23 times

Next We Want To Install The Pre Requisites That Are Specific To Peopl Sudo Apt Get Install Yllat 5 1 Dev Pkg Config Cons 3 (27.76 KiB) Viewed 23 times

Next We Want To Install The Pre Requisites That Are Specific To Peopl Sudo Apt Get Install Yllat 5 1 Dev Pkg Config Cons 4 (20.69 KiB) Viewed 23 times

Next We Want To Install The Pre Requisites That Are Specific To Peopl Sudo Apt Get Install Yllat 5 1 Dev Pkg Config Cons 5 (31.55 KiB) Viewed 23 times

Next We Want To Install The Pre Requisites That Are Specific To Peopl Sudo Apt Get Install Yllat 5 1 Dev Pkg Config Cons 6 (28 KiB) Viewed 23 times

Next We Want To Install The Pre Requisites That Are Specific To Peopl Sudo Apt Get Install Yllat 5 1 Dev Pkg Config Cons 7 (29.9 KiB) Viewed 23 times

Next we want to install the pre-requisites that are specific to peopl sudo apt-get install-yllat 5.1-dev pkg-config consider Download and install Data Acquisition library (DAG) from the Snort website cd /sorts wat https://www.snortordonload/nortdag -2.0.6.tar.gz ta xaf daq-2.0.6.tr.gg od dag-2.0.0 Jconfigure make sudo make install Now we can install Snort, so we will install snart from the sources cd-/snorte wat http://uniort.org download/wortinort-29.13.tar.gz tar -xvf short-29,13 targ od snort 2.9.13.0 Joonfigure-enable sourcefrenable opened make ako natal
sudo make install Now we can install Snort, so we will install snort from the source: cd-scorts wget https://snort.org/downloads/snortsnort-29.13.tar.gz tar -xvf snort-29.13.tar.gz cd snort-2.9.13.0 configure --enable-sourcefire-enable-open-speid make sudo make install Run the following command to update shared libraries: sudo Idconfig Since the Snort installation places the Snort binary at /usr/local/bin/snort, it is common to create a symlink to /usr/sbin/snort: sudo in-s/us/local/bin/snort /usr/sbin/sort
Nome ile 1 Create the meded directories and empty Create the director ded sudom de minste sudom de de mo Create some that stores and its do touch udoucnost Rude touches we touch Create our logging directories de medical sudo divulga och #Adjust permissions: tudoshmod-R 5775 forint chmod-R5775valognot
Create some files that stores rules and in its sudo touch o/snor rules pissinck listries wudo touch /etc/northles pist'white_list sudo touch fortrules/locales sude touch/c/sortsid-mea map #Create our logging directories: sudo mkdir /var/log/sort tudo mkdir varlog/nortechivedlo 1 # Adjust permissions sudo chmed-R 5775 /etc/sort sudo chmod-R 5775 /var/log/sort sudo chmod - 5775 /var/log/snortachive.log sudo chmod -R 5775 /etc/notories sudo chmod R5775/locallbunort.dynarnicules Finally copy some files: cd /sort/sort-2.9.9.0/etc/
1 sudo cp maplewort sude port od -worth-2.2.9.domo preprocessor sudo cp locali di akesamalaாமானை Comment out the rule files that are automatically loaded by Snort in nort.conf by running the following command Budo sed 'Winclude SRULE PATHWinclude SRULEPATHTniort.com Next we need to edit the lete/snortiert.conf Snort configuration files root sude ged/etc/sortsoort.conf Line 45 of /etc/norsnert.cont: the variable HOME NET should match your internal (defended) network var HOME NET (Your MPY24 next we need to modify some file paths to match the lines below, beginning at line 104 var RULE PATH /etc/snort rules var SO RULE_PATH /etc/snorts var PREPROC_RULE PATH /etc/snortpresto ries var WHITE_LIST_PATH /etc/snortires/ipasta BLACK LIST PATH(correlists
next we need to enable the local rules file by un commenting remove the hash symbol from the beginning) line 546 so it looks like the following: include SRULE PATHvocal rules Once you are done with all editing, you should test that snort can load this file without any error. You do this by running short with the Tfing to tell snort to test the file, the flag to identify the path of the snort.confile, and the flag for a network interface that Snort will listen on. sudo anort-Top0s3 - torty.com Once the mossage will be shown like "Snort successfully validated the configuration" then your snort is ready to use, and you can edit the rules fleund run the snort. You can run snort with the following command: sudo short A console-2-let/nor sort.confoto 4 LAB TASKS
Once the message will be shown like "Snort successfully validated the configuration then your snort is ready to use, and you can edit the rules file and run the snort You can run snort with the following command: de snort A console - - /etc/snortsnert.conf - chto . 4 LAB TASKS 4.1.1 How you can use rules and policies in snort to make our network strong and defensive. Explan your answer in detail? 4.1.2 On which ile you can writeRules in snort to make our network strong? Give the name and path of that de 4.1.3 In file ort.conf what does it mean by HOME NET? which address we need to put there and why? 4.14 What is the current version of uniort which you installed? 41.5 If you want snort to display packet data as well as a header which command, you need to use? 5 SUBMISSION You need to submit a detailed lab report with a screenshot, to describe what you have done and what you have observed. You also need to provide an explanation to the observations that are interesting or surprising