Suricata开启PF_RING加速的方法
来源:互联网 发布:javaweb高级编程怎样 编辑:程序博客网 时间:2024/05/29 09:41
Pre installation requirements
Before you can build Suricata for your system, run the following command to ensure that you have everything you need for the installation.
If you have pf_ring already installed, you might want to do:
before continuing with the installation below.
If this is the first time you are installing pf_ring:
Go to your preferred download directory and get the latest stable PF_RING (6.0.3 at the time of this writing)
NOT as root:
wget http://sourceforge.net/projects/ntop/files/PF_RING/PF_RING-6.0.3.tar.gz
Compile and install
Next, enter the following commands for configuration and installation
NOT as root:
tar -zxf PF_RING-6.0.3.tar.gz
cd PF_RING-6.0.3/
make
elevate as root
sudo -i
cd kernel; make install
cd ../userland/lib; make install
then:
sudo modprobe pf_ring
To check if you have everything you need, enter:
modinfo pf_ring && cat /proc/net/pf_ring/info
Suricata
The example below is using suricata-2.0.8 release.
To download and build Suricata, enter the following:
Compile and install the engine
./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var \
--enable-pfring --with-libpfring-includes=/usr/local/pfring/include \
--with-libpfring-libraries=/usr/local/pfring/lib
In case if you get an error during the configure stage (you might experience that with pfring 5.6.2 and above):
Configure like this instead:
LIBS="-lrt -lnuma" ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var \
--enable-pfring --with-libpfring-includes=/usr/local/pfring/include \
--with-libpfring-libraries=/usr/local/pfring/lib
Then:
make
sudo make install
sudo ldconfig
Auto setup
You can also use the available auto setup features of Suricata:
ex:
./configure && make && make install-conf
make install-conf
would do the regular "make install" and then it would automatically create/setup all the necessary directories and suricata.yaml for you.
./configure && make && make install-rules
make install-rules
would do the regular "make install" and then it would automatically download and set up the latest ruleset from Emerging Threats available for Suricata
./configure && make && make install-full
make install-full
would combine everything mentioned above (install-conf and install-rules) - and will present you with a ready to run (configured and set up) Suricata
You can always check if PF_RING is build in properly, by entering:
suricata --build-info
you should see:
To run Suricata with PF_RING, enter:
Continue with the Basic Setup.
- Suricata开启PF_RING加速的方法
- Suricata开启Hyperscan加速的方法
- Suricata+PF_RING安装详解
- 2GB Turbo Memory(迅盘)开启Dashboard(自定义程序加速)的方法
- PF_RING
- pf_ring
- 开启浏览器的GPU加速功能
- suricata的ips模式
- Magento加速的方法
- 五种方法开启GZip压缩为网站加速
- win2003 开启显示加速
- CentOS6开启BBR加速
- Centos7 开启BBR加速
- 使电脑加速的方法
- 加速web网站的方法
- 前端加速网站的方法
- 如何开启FLASH 10的GPU加速功能
- nginx开启gzip加速你的静态资源加载
- SSM框架Spring+SpringMVC+MyBatis——详细整合教程
- Kettle邮件配置及遇到的问题解决
- mac 杀掉占用某个端口的进程
- sdk manager打不开闪退
- C# ASP.NET MVC HtmlHelper用法大全
- Suricata开启PF_RING加速的方法
- Androidstudio无法下载报错unknow host"akamai.bintray.com".you may need to adjust the proxy settings in grad
- linux快速搜索已经输入的命令
- Ubuntu 16.04 LTS 完善解决亮度调整
- 左外连接查询、右外连接查询
- Linux安装JDK
- 如何使用Vim编写和调试Python代码
- kobuki driver的逻辑分析
- HDU1197