Project

General

Profile

Actions

Support #1580

closed

HTTP not processed when used on Debian 8 Stable Jessie

Added by Sean Whalen about 9 years ago. Updated over 8 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Affected Versions:
Label:

Description

After I moved migrated a server from Ubuntu LTS to Debain 8 Stable Jessie, I noticed that HTTP traffic was not being recorded in the logs at all witg Suricata 2.1beta4. At first I assumed I hand built it wrong, since this is my first time building Suricata, but then I found this outstanding Debian bug repord describing the same problem with Suricata 2.0.7 from the Debian repository https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=783660

Apparently there is some incompatibility with Debain Jessie and Suricata?

Here's how I built it:

$ sudo apt-get -y install libpcre3 libpcre3-dbg libpcre3-dev \
build-essential autoconf automake libtool libpcap-dev libnet1-dev \
libyaml-0-2 libyaml-dev zlib1g zlib1g-dev libmagic-dev libcap-ng-dev \
libhtp1-dev lib-geoip libluajit-5.1-dev libnss3-dev libjansson-dev \
pkg-config

$ wget http://www.openinfosecfoundation.org/download/suricata-2.1beta4.tar.gz
$ tar -xzf suricata-2.1beta4.tar.gz
$ cd suricata-2.1beta4
$ ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var --enable-nss --enable-luajit --enable-geoip
$ make
$ sudo checkinstall --fstrans=no install-full

Actions

Also available in: Atom PDF