diff options
author | Ashlee Young <ashlee@onosfw.com> | 2015-09-09 22:21:41 -0700 |
---|---|---|
committer | Ashlee Young <ashlee@onosfw.com> | 2015-09-09 22:21:41 -0700 |
commit | 8879b125d26e8db1a5633de5a9c692eb2d1c4f83 (patch) | |
tree | c7259d85a991b83dfa85ab2e339360669fc1f58e /framework/src/suricata/doc/Installation_from_GIT_with_PF_RING_on_Ubuntu_server_1104.txt | |
parent | 13d05bc8458758ee39cb829098241e89616717ee (diff) |
suricata checkin based on commit id a4bce14770beee46a537eda3c3f6e8e8565d5d0a
Change-Id: I9a214fa0ee95e58fc640e50bd604dac7f42db48f
Diffstat (limited to 'framework/src/suricata/doc/Installation_from_GIT_with_PF_RING_on_Ubuntu_server_1104.txt')
-rw-r--r-- | framework/src/suricata/doc/Installation_from_GIT_with_PF_RING_on_Ubuntu_server_1104.txt | 73 |
1 files changed, 73 insertions, 0 deletions
diff --git a/framework/src/suricata/doc/Installation_from_GIT_with_PF_RING_on_Ubuntu_server_1104.txt b/framework/src/suricata/doc/Installation_from_GIT_with_PF_RING_on_Ubuntu_server_1104.txt new file mode 100644 index 00000000..64012df9 --- /dev/null +++ b/framework/src/suricata/doc/Installation_from_GIT_with_PF_RING_on_Ubuntu_server_1104.txt @@ -0,0 +1,73 @@ +Autogenerated on 2012-01-11 +from - https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Installation_from_GIT_with_PF_RING_on_Ubuntu_server_1104 + + +Installation from GIT with PF RING on Ubuntu server 11.04 + +This guide is based on using Ubuntu Server 11.04 +Linux ubuntu 2.6.38-8-generic x86_64 GNU/Linux + + +Pre installation requirements + +Install the following packages, to make sure you have everything needed for the +installation: + + sudo apt-get -y install libpcre3 libpcre3-dbg libpcre3-dev \ + build-essential autoconf automake libtool libpcap-dev libnet1-dev \ + libyaml-0-2 libyaml-dev zlib1g zlib1g-dev libcap-ng-dev libcap-ng0 \ + make flex bison git subversion + +Go to your download directory and get the latest PF_RING: + + svn --force export https://svn.ntop.org/svn/ntop/trunk/PF_RING/ PF_RING + + +Compile and install + +Next, enter the following commands for configuration and installation: + + cd PF_RING/kernel + make && make install + sudo insmod ./pf_ring.ko + cd ../userland + make && make install + cd /lib + ./configure && make && make install + cd ../libpcap + ./configure && make && make install + cd /examples + echo "options pf_ring transparent_mode=0 min_num_slots=32768 + enable_tx_capture=0" > /etc/modprobe.d/pf_ring.conf + +To check if you have everything you need, enter: + + lsmod |grep pf_ring + sudo modprobe pf_ring + sudo modinfo pf_ring && cat /proc/net/pf_ring/info + +To check if PF_RING is functional, enter the following: + + ./pfcount -i eth0 + + +Suricata + +Go to your download directory of choice, and enter: + + git clone git://phalanx.openinfosecfoundation.org/oisf.git + cd oisf + sudo ./autogen.sh + sudo ./configure --enable-pfring && make && make install + +You can always check if PF_RING is build in properly, by entering: + + suricata --build-info + +To run Suricata with PF_RING, enter: + + suricata --pfring-int=eth0 --pfring-cluster-id=99 --pfring-cluster- + type=cluster_flow -c /etc/suricata/suricata.yaml + +Continue with the Basic_Setup. +Thanks to Peter Manev |