API tools faq
paste
Guest User

Sophos UTM IPS Log

a guest
Dec 24th, 2013
44
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 72.44 KB | None | 0 0
raw download clone embed print report
  1. 2013:12:24-11:17:23 traxxus snort[8798]: Enabling inline operation
  2. 2013:12:24-11:17:23 traxxus snort[8798]: Running in IDS mode
  3. 2013:12:24-11:17:23 traxxus snort[8798]:
  4. 2013:12:24-11:17:23 traxxus snort[8798]: --== Initializing Snort ==--
  5. 2013:12:24-11:17:23 traxxus snort[8798]: Initializing Output Plugins!
  6. 2013:12:24-11:17:23 traxxus snort[8798]: Initializing Preprocessors!
  7. 2013:12:24-11:17:23 traxxus snort[8798]: Initializing Plug-ins!
  8. 2013:12:24-11:17:23 traxxus snort[8798]: Parsing Rules file "/etc/snort/snort.conf"
  9. 2013:12:24-11:17:25 traxxus snort[8825]: PortVar 'HTTP_PORTS' defined :
  10. 2013:12:24-11:17:25 traxxus snort[8825]: [ 80 2301 3128 7777 7779 8000 8008 8028 8080 8180 8888 9999 ]
  11. 2013:12:24-11:17:25 traxxus snort[8825]:
  12. 2013:12:24-11:17:25 traxxus snort[8825]: PortVar 'FILE_DATA_PORTS' defined :
  13. 2013:12:24-11:17:25 traxxus snort[8825]: [ 80 110 143 2301 3128 7777 7779 8000 8008 8028 8080 8180 8888 9999 ]
  14. 2013:12:24-11:17:25 traxxus snort[8825]:
  15. 2013:12:24-11:17:25 traxxus snort[8825]: PortVar 'SHELLCODE_PORTS' defined :
  16. 2013:12:24-11:17:25 traxxus snort[8825]: [ 0:79 81:65535 ]
  17. 2013:12:24-11:17:25 traxxus snort[8825]:
  18. 2013:12:24-11:17:25 traxxus snort[8825]: PortVar 'ORACLE_PORTS' defined :
  19. 2013:12:24-11:17:25 traxxus snort[8825]: [ 1024:65535 ]
  20. 2013:12:24-11:17:25 traxxus snort[8825]:
  21. 2013:12:24-11:17:25 traxxus snort[8825]: PortVar 'SSH_PORTS' defined :
  22. 2013:12:24-11:17:25 traxxus snort[8825]: [ 22 ]
  23. 2013:12:24-11:17:25 traxxus snort[8825]:
  24. 2013:12:24-11:17:25 traxxus snort[8825]: PortVar 'FTP_PORTS' defined :
  25. 2013:12:24-11:17:25 traxxus snort[8825]: [ 21 2100 3535 ]
  26. 2013:12:24-11:17:25 traxxus snort[8825]:
  27. 2013:12:24-11:17:25 traxxus snort[8825]: PortVar 'SIP_PORTS' defined :
  28. 2013:12:24-11:17:25 traxxus snort[8825]: [ 5060:5061 5600 ]
  29. 2013:12:24-11:17:25 traxxus snort[8825]:
  30. 2013:12:24-11:17:25 traxxus snort[8825]: Detection:
  31. 2013:12:24-11:17:25 traxxus snort[8825]: Search-Method = AC-BNFA-Q
  32. 2013:12:24-11:17:25 traxxus snort[8825]: Search-Method-Optimizations = enabled
  33. 2013:12:24-11:17:25 traxxus snort[8825]: Tagged Packet Limit: 256
  34. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic engine /usr/lib/snort_dynamicengine/libsf_engine.so...
  35. 2013:12:24-11:17:25 traxxus snort[8825]: done
  36. 2013:12:24-11:17:25 traxxus snort[8825]: Loading all dynamic detection libs from /usr/lib/snort/so_rules/...
  37. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//bad-traffic.so...
  38. 2013:12:24-11:17:25 traxxus snort[8825]: done
  39. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//snmp.so...
  40. 2013:12:24-11:17:25 traxxus snort[8825]: done
  41. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//web-activex.so...
  42. 2013:12:24-11:17:25 traxxus snort[8825]: done
  43. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//misc.so...
  44. 2013:12:24-11:17:25 traxxus snort[8825]: done
  45. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//imap.so...
  46. 2013:12:24-11:17:25 traxxus snort[8825]: done
  47. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//web-misc.so...
  48. 2013:12:24-11:17:25 traxxus snort[8825]: done
  49. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//nntp.so...
  50. 2013:12:24-11:17:25 traxxus snort[8825]: done
  51. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//netbios.so...
  52. 2013:12:24-11:17:25 traxxus snort[8825]: done
  53. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//web-client.so...
  54. 2013:12:24-11:17:25 traxxus snort[8825]: done
  55. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//exploit.so...
  56. 2013:12:24-11:17:25 traxxus snort[8825]: done
  57. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//icmp.so...
  58. 2013:12:24-11:17:25 traxxus snort[8825]: done
  59. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//dos.so...
  60. 2013:12:24-11:17:25 traxxus snort[8825]: done
  61. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//web-iis.so...
  62. 2013:12:24-11:17:25 traxxus snort[8825]: done
  63. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//smtp.so...
  64. 2013:12:24-11:17:25 traxxus snort[8825]: done
  65. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic detection library /usr/lib/snort/so_rules//specific-threats.so...
  66. 2013:12:24-11:17:25 traxxus snort[8825]: done
  67. 2013:12:24-11:17:25 traxxus snort[8825]: Finished Loading all dynamic detection libs from /usr/lib/snort/so_rules/
  68. 2013:12:24-11:17:25 traxxus snort[8825]: Loading all dynamic preprocessor libs from /usr/lib/snort/...
  69. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_sip_preproc.so...
  70. 2013:12:24-11:17:25 traxxus snort[8825]: done
  71. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_dnp3_preproc.so...
  72. 2013:12:24-11:17:25 traxxus snort[8825]: done
  73. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_ftptelnet_preproc.so...
  74. 2013:12:24-11:17:25 traxxus snort[8825]: done
  75. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_dns_preproc.so...
  76. 2013:12:24-11:17:25 traxxus snort[8825]: done
  77. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_pop_preproc.so...
  78. 2013:12:24-11:17:25 traxxus snort[8825]: done
  79. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_gtp_preproc.so...
  80. 2013:12:24-11:17:25 traxxus snort[8825]: done
  81. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_ssh_preproc.so...
  82. 2013:12:24-11:17:25 traxxus snort[8825]: done
  83. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_modbus_preproc.so...
  84. 2013:12:24-11:17:25 traxxus snort[8825]: done
  85. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_imap_preproc.so...
  86. 2013:12:24-11:17:25 traxxus snort[8825]: done
  87. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_reputation_preproc.so...
  88. 2013:12:24-11:17:25 traxxus snort[8825]: done
  89. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_dce2_preproc.so...
  90. 2013:12:24-11:17:25 traxxus snort[8825]: done
  91. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_smtp_preproc.so...
  92. 2013:12:24-11:17:25 traxxus snort[8825]: done
  93. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_ssl_preproc.so...
  94. 2013:12:24-11:17:25 traxxus snort[8825]: done
  95. 2013:12:24-11:17:25 traxxus snort[8825]: Loading dynamic preprocessor library /usr/lib/snort//libsf_sdf_preproc.so...
  96. 2013:12:24-11:17:25 traxxus snort[8825]: done
  97. 2013:12:24-11:17:25 traxxus snort[8825]: Finished Loading all dynamic preprocessor libs from /usr/lib/snort/
  98. 2013:12:24-11:17:25 traxxus snort[8825]: Log directory = /var/log/snort
  99. 2013:12:24-11:17:25 traxxus snort[8825]: Frag3 global config:
  100. 2013:12:24-11:17:25 traxxus snort[8825]: Max frags: 65536
  101. 2013:12:24-11:17:25 traxxus snort[8825]: Fragment memory cap: 4194304 bytes
  102. 2013:12:24-11:17:25 traxxus snort[8825]: Frag3 engine config:
  103. 2013:12:24-11:17:25 traxxus snort[8825]: Bound Address: default
  104. 2013:12:24-11:17:25 traxxus snort[8825]: Target-based policy: WINDOWS
  105. 2013:12:24-11:17:25 traxxus snort[8825]: Fragment timeout: 180 seconds
  106. 2013:12:24-11:17:25 traxxus snort[8825]: Fragment min_ttl: 1
  107. 2013:12:24-11:17:25 traxxus snort[8825]: Fragment Anomalies: Alert
  108. 2013:12:24-11:17:25 traxxus snort[8825]: Overlap Limit: 10
  109. 2013:12:24-11:17:25 traxxus snort[8825]: Min fragment Length: 100
  110. 2013:12:24-11:17:25 traxxus snort[8825]: Stream5 global config:
  111. 2013:12:24-11:17:25 traxxus snort[8825]: Track TCP sessions: ACTIVE
  112. 2013:12:24-11:17:25 traxxus snort[8825]: Max TCP sessions: 12800
  113. 2013:12:24-11:17:25 traxxus snort[8825]: TCP cache pruning timeout: 30 seconds
  114. 2013:12:24-11:17:25 traxxus snort[8825]: TCP cache nominal timeout: 3600 seconds
  115. 2013:12:24-11:17:25 traxxus snort[8825]: Memcap (for reassembly packet storage): 8388608
  116. 2013:12:24-11:17:25 traxxus snort[8825]: Track UDP sessions: ACTIVE
  117. 2013:12:24-11:17:25 traxxus snort[8825]: Max UDP sessions: 3200
  118. 2013:12:24-11:17:25 traxxus snort[8825]: UDP cache pruning timeout: 30 seconds
  119. 2013:12:24-11:17:25 traxxus snort[8825]: UDP cache nominal timeout: 180 seconds
  120. 2013:12:24-11:17:25 traxxus snort[8825]: Track ICMP sessions: INACTIVE
  121. 2013:12:24-11:17:25 traxxus snort[8825]: Track IP sessions: INACTIVE
  122. 2013:12:24-11:17:25 traxxus snort[8825]: Log info if session memory consumption exceeds 1048576
  123. 2013:12:24-11:17:25 traxxus snort[8825]: Send up to 2 active responses
  124. 2013:12:24-11:17:25 traxxus snort[8825]: Wait at least 5 seconds between responses
  125. 2013:12:24-11:17:25 traxxus snort[8825]: Protocol Aware Flushing: ACTIVE
  126. 2013:12:24-11:17:25 traxxus snort[8825]: Maximum Flush Point: 16000
  127. 2013:12:24-11:17:25 traxxus snort[8825]: Max Expected Streams: 31
  128. 2013:12:24-11:17:25 traxxus snort[8825]: Stream5 TCP Policy config:
  129. 2013:12:24-11:17:25 traxxus snort[8825]: Bound Address: default
  130. 2013:12:24-11:17:25 traxxus snort[8825]: Reassembly Policy: WINDOWS
  131. 2013:12:24-11:17:25 traxxus snort[8825]: Timeout: 180 seconds
  132. 2013:12:24-11:17:25 traxxus snort[8825]: Limit on TCP Overlaps: 10
  133. 2013:12:24-11:17:25 traxxus snort[8825]: Maximum number of bytes to queue per session: 1048576
  134. 2013:12:24-11:17:25 traxxus snort[8825]: Maximum number of segs to queue per session: 2621
  135. 2013:12:24-11:17:25 traxxus snort[8825]: Options:
  136. 2013:12:24-11:17:25 traxxus snort[8825]: Require 3-Way Handshake: YES
  137. 2013:12:24-11:17:25 traxxus snort[8825]: 3-Way Handshake Timeout: 180
  138. 2013:12:24-11:17:25 traxxus snort[8825]: Detect Anomalies: YES
  139. 2013:12:24-11:17:25 traxxus snort[8825]: Reassembly Ports:
  140. 2013:12:24-11:17:25 traxxus snort[8825]: 21 client (Footprint)
  141. 2013:12:24-11:17:25 traxxus snort[8825]: 22 client (Footprint)
  142. 2013:12:24-11:17:25 traxxus snort[8825]: 23 client (Footprint)
  143. 2013:12:24-11:17:25 traxxus snort[8825]: 25 client (Footprint)
  144. 2013:12:24-11:17:25 traxxus snort[8825]: 42 client (Footprint)
  145. 2013:12:24-11:17:25 traxxus snort[8825]: 53 client (Footprint)
  146. 2013:12:24-11:17:25 traxxus snort[8825]: 79 client (Footprint)
  147. 2013:12:24-11:17:25 traxxus snort[8825]: 80 client (Footprint) server (Footprint)
  148. 2013:12:24-11:17:25 traxxus snort[8825]: 81 client (Footprint) server (Footprint)
  149. 2013:12:24-11:17:25 traxxus snort[8825]: 109 client (Footprint)
  150. 2013:12:24-11:17:25 traxxus snort[8825]: 110 client (Footprint)
  151. 2013:12:24-11:17:25 traxxus snort[8825]: 111 client (Footprint)
  152. 2013:12:24-11:17:25 traxxus snort[8825]: 113 client (Footprint)
  153. 2013:12:24-11:17:25 traxxus snort[8825]: 119 client (Footprint)
  154. 2013:12:24-11:17:25 traxxus snort[8825]: 135 client (Footprint)
  155. 2013:12:24-11:17:25 traxxus snort[8825]: 136 client (Footprint)
  156. 2013:12:24-11:17:25 traxxus snort[8825]: 137 client (Footprint)
  157. 2013:12:24-11:17:25 traxxus snort[8825]: 139 client (Footprint)
  158. 2013:12:24-11:17:25 traxxus snort[8825]: 143 client (Footprint)
  159. 2013:12:24-11:17:25 traxxus snort[8825]: 161 client (Footprint)
  160. 2013:12:24-11:17:25 traxxus snort[8825]: additional ports configured but not printed.
  161. 2013:12:24-11:17:25 traxxus snort[8825]: Stream5 UDP Policy config:
  162. 2013:12:24-11:17:25 traxxus snort[8825]: Timeout: 180 seconds
  163. 2013:12:24-11:17:25 traxxus snort[8825]: HttpInspect Config:
  164. 2013:12:24-11:17:25 traxxus snort[8825]: GLOBAL CONFIG
  165. 2013:12:24-11:17:25 traxxus snort[8825]: Max Pipeline Requests: 0
  166. 2013:12:24-11:17:25 traxxus snort[8825]: Inspection Type: STATELESS
  167. 2013:12:24-11:17:25 traxxus snort[8825]: Detect Proxy Usage: NO
  168. 2013:12:24-11:17:25 traxxus snort[8825]: IIS Unicode Map Filename: /etc/snort/unicode.map
  169. 2013:12:24-11:17:25 traxxus snort[8825]: IIS Unicode Map Codepage: 1252
  170. 2013:12:24-11:17:25 traxxus snort[8825]: Memcap used for logging URI and Hostname: 150994944
  171. 2013:12:24-11:17:25 traxxus snort[8825]: Max Gzip Memory: 838860
  172. 2013:12:24-11:17:25 traxxus snort[8825]: Max Gzip Sessions: 9532
  173. 2013:12:24-11:17:25 traxxus snort[8825]: Gzip Compress Depth: 65535
  174. 2013:12:24-11:17:25 traxxus snort[8825]: Gzip Decompress Depth: 65535
  175. 2013:12:24-11:17:25 traxxus snort[8825]: DEFAULT SERVER CONFIG:
  176. 2013:12:24-11:17:25 traxxus snort[8825]: Server profile: All
  177. 2013:12:24-11:17:25 traxxus snort[8825]: Ports (PAF): 80 311 591 593 901 1220 1414 2301 2381 2809 3128 3702 7777 7779 8000 8008 8028 8080 8118 8123 8180 8243 8280 8888 9443 9999 11371
  178. 2013:12:24-11:17:25 traxxus snort[8825]: Server Flow Depth: 0
  179. 2013:12:24-11:17:25 traxxus snort[8825]: Client Flow Depth: 0
  180. 2013:12:24-11:17:25 traxxus snort[8825]: Max Chunk Length: 500000
  181. 2013:12:24-11:17:25 traxxus snort[8825]: Max Header Field Length: 750
  182. 2013:12:24-11:17:25 traxxus snort[8825]: Max Number Header Fields: 100
  183. 2013:12:24-11:17:25 traxxus snort[8825]: Max Number of WhiteSpaces allowed with header folding: 200
  184. 2013:12:24-11:17:25 traxxus snort[8825]: Inspect Pipeline Requests: YES
  185. 2013:12:24-11:17:25 traxxus snort[8825]: URI Discovery Strict Mode: NO
  186. 2013:12:24-11:17:25 traxxus snort[8825]: Allow Proxy Usage: NO
  187. 2013:12:24-11:17:25 traxxus snort[8825]: Disable Alerting: NO
  188. 2013:12:24-11:17:25 traxxus snort[8825]: Oversize Dir Length: 500
  189. 2013:12:24-11:17:25 traxxus snort[8825]: Only inspect URI: NO
  190. 2013:12:24-11:17:25 traxxus snort[8825]: Normalize HTTP Headers: NO
  191. 2013:12:24-11:17:25 traxxus snort[8825]: Inspect HTTP Cookies: YES
  192. 2013:12:24-11:17:25 traxxus snort[8825]: Inspect HTTP Responses: YES
  193. 2013:12:24-11:17:25 traxxus snort[8825]: Extract Gzip from responses: YES
  194. 2013:12:24-11:17:25 traxxus snort[8825]: Unlimited decompression of gzip data from responses: NO
  195. 2013:12:24-11:17:25 traxxus snort[8825]: Normalize Javascripts in HTTP Responses: NO
  196. 2013:12:24-11:17:25 traxxus snort[8825]: Normalize HTTP Cookies: NO
  197. 2013:12:24-11:17:25 traxxus snort[8825]: Enable XFF and True Client IP: NO
  198. 2013:12:24-11:17:25 traxxus snort[8825]: Log HTTP URI data: NO
  199. 2013:12:24-11:17:25 traxxus snort[8825]: Log HTTP Hostname data: NO
  200. 2013:12:24-11:17:25 traxxus snort[8825]: Extended ASCII code support in URI: NO
  201. 2013:12:24-11:17:25 traxxus snort[8825]: Ascii: YES alert: NO
  202. 2013:12:24-11:17:25 traxxus snort[8825]: Double Decoding: YES alert: NO
  203. 2013:12:24-11:17:25 traxxus snort[8825]: %U Encoding: YES alert: YES
  204. 2013:12:24-11:17:25 traxxus snort[8825]: Bare Byte: YES alert: NO
  205. 2013:12:24-11:17:25 traxxus snort[8825]: UTF 8: YES alert: NO
  206. 2013:12:24-11:17:25 traxxus snort[8825]: IIS Unicode: YES alert: NO
  207. 2013:12:24-11:17:25 traxxus snort[8825]: Multiple Slash: YES alert: NO
  208. 2013:12:24-11:17:25 traxxus snort[8825]: IIS Backslash: YES alert: NO
  209. 2013:12:24-11:17:25 traxxus snort[8825]: Directory Traversal: YES alert: NO
  210. 2013:12:24-11:17:25 traxxus snort[8825]: Web Root Traversal: YES alert: NO
  211. 2013:12:24-11:17:25 traxxus snort[8825]: Apache WhiteSpace: YES alert: NO
  212. 2013:12:24-11:17:25 traxxus snort[8825]: IIS Delimiter: YES alert: NO
  213. 2013:12:24-11:17:25 traxxus snort[8825]: IIS Unicode Map: GLOBAL IIS UNICODE MAP CONFIG
  214. 2013:12:24-11:17:25 traxxus snort[8825]: Non-RFC Compliant Characters: 0x00 0x01 0x02 0x03 0x04 0x05 0x06 0x07
  215. 2013:12:24-11:17:25 traxxus snort[8825]: Whitespace Characters: 0x09 0x0b 0x0c 0x0d
  216. 2013:12:24-11:17:25 traxxus snort[8825]: rpc_decode arguments:
  217. 2013:12:24-11:17:25 traxxus snort[8825]: Ports to decode RPC on: 111 32770 32771 32772 32773 32774 32775 32776 32777 32778 32779
  218. 2013:12:24-11:17:25 traxxus snort[8825]: alert_fragments: INACTIVE
  219. 2013:12:24-11:17:25 traxxus snort[8825]: alert_large_fragments: INACTIVE
  220. 2013:12:24-11:17:25 traxxus snort[8825]: alert_incomplete: INACTIVE
  221. 2013:12:24-11:17:25 traxxus snort[8825]: alert_multiple_requests: INACTIVE
  222. 2013:12:24-11:17:25 traxxus snort[8825]: FTPTelnet Config:
  223. 2013:12:24-11:17:25 traxxus snort[8825]: GLOBAL CONFIG
  224. 2013:12:24-11:17:25 traxxus snort[8825]: Inspection Type: stateful
  225. 2013:12:24-11:17:25 traxxus snort[8825]: Check for Encrypted Traffic: YES alert: NO
  226. 2013:12:24-11:17:25 traxxus snort[8825]: Continue to check encrypted data: NO
  227. 2013:12:24-11:17:25 traxxus snort[8825]: TELNET CONFIG:
  228. 2013:12:24-11:17:25 traxxus snort[8825]: Ports: 23
  229. 2013:12:24-11:17:25 traxxus snort[8825]: Are You There Threshold: 20
  230. 2013:12:24-11:17:25 traxxus snort[8825]: Normalize: YES
  231. 2013:12:24-11:17:25 traxxus snort[8825]: Detect Anomalies: YES
  232. 2013:12:24-11:17:25 traxxus snort[8825]: FTP CONFIG:
  233. 2013:12:24-11:17:25 traxxus snort[8825]: FTP Server: default
  234. 2013:12:24-11:17:25 traxxus snort[8825]: Ports (PAF): 21 2100 3535
  235. 2013:12:24-11:17:25 traxxus snort[8825]: Check for Telnet Cmds: YES alert: YES
  236. 2013:12:24-11:17:25 traxxus snort[8825]: Ignore Telnet Cmd Operations: YES alert: YES
  237. 2013:12:24-11:17:25 traxxus snort[8825]: Identify open data channels: NO
  238. 2013:12:24-11:17:25 traxxus snort[8825]: FTP Client: default
  239. 2013:12:24-11:17:25 traxxus snort[8825]: Check for Bounce Attacks: YES alert: YES
  240. 2013:12:24-11:17:25 traxxus snort[8825]: Check for Telnet Cmds: YES alert: YES
  241. 2013:12:24-11:17:25 traxxus snort[8825]: Ignore Telnet Cmd Operations: YES alert: YES
  242. 2013:12:24-11:17:25 traxxus snort[8825]: Max Response Length: 256
  243. 2013:12:24-11:17:25 traxxus snort[8825]: SMTP Config:
  244. 2013:12:24-11:17:25 traxxus snort[8825]: Ports: 25 465 587 691
  245. 2013:12:24-11:17:25 traxxus snort[8825]: Inspection Type: Stateful
  246. 2013:12:24-11:17:25 traxxus snort[8825]: Normalize: ATRN AUTH BDAT DATA DEBUG EHLO EMAL ESAM ESND ESOM ETRN EVFY EXPN HELO HELP IDENT MAIL NOOP ONEX QUEU QUIT RCPT RSET SAML SEND STARTTLS SOML TICK TIME TURN TURNME VERB VRFY X-EXPS XADR XAUTH XCIR XEXCH50 XGEN XLICENSE X-LINK2STATE XQUE XSTA XTRN XUSR CHUNKING X-ADAT X-DRCP X-ERCP X-EXCH50
  247. 2013:12:24-11:17:25 traxxus snort[8825]: Ignore Data: No
  248. 2013:12:24-11:17:25 traxxus snort[8825]: Ignore TLS Data: Yes
  249. 2013:12:24-11:17:25 traxxus snort[8825]: Ignore SMTP Alerts: No
  250. 2013:12:24-11:17:25 traxxus snort[8825]: Max Command Line Length: 512
  251. 2013:12:24-11:17:25 traxxus snort[8825]: Max Specific Command Line Length:
  252. 2013:12:24-11:17:25 traxxus snort[8825]: ATRN:255 AUTH:246 BDAT:255 DATA:246 DEBUG:255
  253. 2013:12:24-11:17:25 traxxus snort[8825]: EHLO:500 EMAL:255 ESAM:255 ESND:255 ESOM:255
  254. 2013:12:24-11:17:25 traxxus snort[8825]: ETRN:246 EVFY:255 EXPN:255 HELO:500 HELP:500
  255. 2013:12:24-11:17:25 traxxus snort[8825]: IDENT:255 MAIL:260 NOOP:255 ONEX:246 QUEU:246
  256. 2013:12:24-11:17:25 traxxus snort[8825]: QUIT:246 RCPT:300 RSET:246 SAML:246 SEND:246
  257. 2013:12:24-11:17:25 traxxus snort[8825]: SIZE:255 STARTTLS:246 SOML:246 TICK:246 TIME:246
  258. 2013:12:24-11:17:25 traxxus snort[8825]: TURN:246 TURNME:246 VERB:246 VRFY:255 X-EXPS:246
  259. 2013:12:24-11:17:25 traxxus snort[8825]: XADR:246 XAUTH:246 XCIR:246 XEXCH50:246 XGEN:246
  260. 2013:12:24-11:17:25 traxxus snort[8825]: XLICENSE:246 X-LINK2STATE:246 XQUE:246 XSTA:246 XTRN:246
  261. 2013:12:24-11:17:25 traxxus snort[8825]: XUSR:246
  262. 2013:12:24-11:17:25 traxxus snort[8825]: Max Header Line Length: 1000
  263. 2013:12:24-11:17:25 traxxus snort[8825]: Max Response Line Length: 512
  264. 2013:12:24-11:17:25 traxxus snort[8825]: X-Link2State Alert: Yes
  265. 2013:12:24-11:17:25 traxxus snort[8825]: Drop on X-Link2State Alert: No
  266. 2013:12:24-11:17:25 traxxus snort[8825]: Alert on commands: None
  267. 2013:12:24-11:17:25 traxxus snort[8825]: Alert on unknown commands: No
  268. 2013:12:24-11:17:25 traxxus snort[8825]: SMTP Memcap: 838860
  269. 2013:12:24-11:17:25 traxxus snort[8825]: MIME Max Mem: 838860
  270. 2013:12:24-11:17:25 traxxus snort[8825]: Base64 Decoding: Enabled
  271. 2013:12:24-11:17:25 traxxus snort[8825]: Base64 Decoding Depth: Unlimited
  272. 2013:12:24-11:17:25 traxxus snort[8825]: Quoted-Printable Decoding: Enabled
  273. 2013:12:24-11:17:25 traxxus snort[8825]: Quoted-Printable Decoding Depth: Unlimited
  274. 2013:12:24-11:17:25 traxxus snort[8825]: Unix-to-Unix Decoding: Enabled
  275. 2013:12:24-11:17:25 traxxus snort[8825]: Unix-to-Unix Decoding Depth: Unlimited
  276. 2013:12:24-11:17:25 traxxus snort[8825]: Non-Encoded MIME attachment Extraction: Enabled
  277. 2013:12:24-11:17:25 traxxus snort[8825]: Non-Encoded MIME attachment Extraction Depth: Unlimited
  278. 2013:12:24-11:17:25 traxxus snort[8825]: Log Attachment filename: Enabled
  279. 2013:12:24-11:17:25 traxxus snort[8825]: Log MAIL FROM Address: Enabled
  280. 2013:12:24-11:17:25 traxxus snort[8825]: Log RCPT TO Addresses: Enabled
  281. 2013:12:24-11:17:25 traxxus snort[8825]: Log Email Headers: Enabled
  282. 2013:12:24-11:17:25 traxxus snort[8825]: Email Hdrs Log Depth: 1464
  283. 2013:12:24-11:17:25 traxxus snort[8825]: SSH config:
  284. 2013:12:24-11:17:25 traxxus snort[8825]: Autodetection: ENABLED
  285. 2013:12:24-11:17:25 traxxus snort[8825]: Challenge-Response Overflow Alert: ENABLED
  286. 2013:12:24-11:17:25 traxxus snort[8825]: SSH1 CRC32 Alert: ENABLED
  287. 2013:12:24-11:17:25 traxxus snort[8825]: Server Version String Overflow Alert: ENABLED
  288. 2013:12:24-11:17:25 traxxus snort[8825]: Protocol Mismatch Alert: ENABLED
  289. 2013:12:24-11:17:25 traxxus snort[8825]: Bad Message Direction Alert: DISABLED
  290. 2013:12:24-11:17:25 traxxus snort[8825]: Bad Payload Size Alert: DISABLED
  291. 2013:12:24-11:17:25 traxxus snort[8825]: Unrecognized Version Alert: DISABLED
  292. 2013:12:24-11:17:25 traxxus snort[8825]: Max Encrypted Packets: 20
  293. 2013:12:24-11:17:25 traxxus snort[8825]: Max Server Version String Length: 100
  294. 2013:12:24-11:17:25 traxxus snort[8825]: MaxClientBytes: 19600 (Default)
  295. 2013:12:24-11:17:25 traxxus snort[8825]: Ports:
  296. 2013:12:24-11:17:25 traxxus snort[8825]: 22
  297. 2013:12:24-11:17:25 traxxus snort[8825]:
  298. 2013:12:24-11:17:25 traxxus snort[8825]: DCE/RPC 2 Preprocessor Configuration
  299. 2013:12:24-11:17:25 traxxus snort[8825]: Global Configuration
  300. 2013:12:24-11:17:25 traxxus snort[8825]: DCE/RPC Defragmentation: Enabled
  301. 2013:12:24-11:17:25 traxxus snort[8825]: Memcap: 102400 KB
  302. 2013:12:24-11:17:25 traxxus snort[8825]: Events: smb co cl
  303. 2013:12:24-11:17:25 traxxus snort[8825]: SMB Fingerprint policy: Disabled
  304. 2013:12:24-11:17:25 traxxus snort[8825]: Server Default Configuration
  305. 2013:12:24-11:17:25 traxxus snort[8825]: Policy: WinXP
  306. 2013:12:24-11:17:25 traxxus snort[8825]: Detect ports (PAF)
  307. 2013:12:24-11:17:25 traxxus snort[8825]: SMB: 139 445
  308. 2013:12:24-11:17:25 traxxus snort[8825]: TCP: 135
  309. 2013:12:24-11:17:25 traxxus snort[8825]: UDP: 135
  310. 2013:12:24-11:17:25 traxxus snort[8825]: RPC over HTTP server: 593
  311. 2013:12:24-11:17:25 traxxus snort[8825]: RPC over HTTP proxy: None
  312. 2013:12:24-11:17:25 traxxus snort[8825]: Autodetect ports (PAF)
  313. 2013:12:24-11:17:25 traxxus snort[8825]: SMB: None
  314. 2013:12:24-11:17:25 traxxus snort[8825]: TCP: 1025-65535
  315. 2013:12:24-11:17:25 traxxus snort[8825]: UDP: 1025-65535
  316. 2013:12:24-11:17:25 traxxus snort[8825]: RPC over HTTP server: 1025-65535
  317. 2013:12:24-11:17:25 traxxus snort[8825]: RPC over HTTP proxy: None
  318. 2013:12:24-11:17:25 traxxus snort[8825]: Maximum SMB command chaining: 3 commands
  319. 2013:12:24-11:17:25 traxxus snort[8825]: DNS config:
  320. 2013:12:24-11:17:25 traxxus snort[8825]: DNS Client rdata txt Overflow Alert: ACTIVE
  321. 2013:12:24-11:17:25 traxxus snort[8825]: Obsolete DNS RR Types Alert: INACTIVE
  322. 2013:12:24-11:17:25 traxxus snort[8825]: Experimental DNS RR Types Alert: INACTIVE
  323. 2013:12:24-11:17:25 traxxus snort[8825]: Ports:
  324. 2013:12:24-11:17:25 traxxus snort[8825]: 53
  325. 2013:12:24-11:17:25 traxxus snort[8825]:
  326. 2013:12:24-11:17:25 traxxus snort[8825]: SSLPP config:
  327. 2013:12:24-11:17:25 traxxus snort[8825]: Encrypted packets: not inspected
  328. 2013:12:24-11:17:25 traxxus snort[8825]: Ports:
  329. 2013:12:24-11:17:25 traxxus snort[8825]: 443 465 563 636 989
  330. 2013:12:24-11:17:25 traxxus snort[8825]: 992 993 994 995 6907
  331. 2013:12:24-11:17:25 traxxus snort[8825]: 7702 7801 7900 7901 7902
  332. 2013:12:24-11:17:25 traxxus snort[8825]: 7903 7904 7905 7906 7908
  333. 2013:12:24-11:17:25 traxxus snort[8825]: 7909 7910 7911 7912 7913
  334. 2013:12:24-11:17:25 traxxus snort[8825]: 7914 7915 7916 7917 7918
  335. 2013:12:24-11:17:25 traxxus snort[8825]: 7919 7920
  336. 2013:12:24-11:17:25 traxxus snort[8825]: Server side data is trusted
  337. 2013:12:24-11:17:25 traxxus snort[8825]: Sensitive Data preprocessor config:
  338. 2013:12:24-11:17:25 traxxus snort[8825]: Global Alert Threshold: 25
  339. 2013:12:24-11:17:25 traxxus snort[8825]: Masked Output: DISABLED
  340. 2013:12:24-11:17:25 traxxus snort[8825]: SIP config:
  341. 2013:12:24-11:17:25 traxxus snort[8825]: Max number of sessions: 10000 (Default)
  342. 2013:12:24-11:17:25 traxxus snort[8825]: Max number of dialogs in a session: 4 (Default)
  343. 2013:12:24-11:17:25 traxxus snort[8825]: Status: ENABLED
  344. 2013:12:24-11:17:25 traxxus snort[8825]: Ignore media channel: DISABLED
  345. 2013:12:24-11:17:25 traxxus snort[8825]: Max URI length: 512
  346. 2013:12:24-11:17:25 traxxus snort[8825]: Max Call ID length: 80
  347. 2013:12:24-11:17:25 traxxus snort[8825]: Max Request name length: 20 (Default)
  348. 2013:12:24-11:17:25 traxxus snort[8825]: Max From length: 256 (Default)
  349. 2013:12:24-11:17:25 traxxus snort[8825]: Max To length: 256 (Default)
  350. 2013:12:24-11:17:25 traxxus snort[8825]: Max Via length: 1024 (Default)
  351. 2013:12:24-11:17:25 traxxus snort[8825]: Max Contact length: 512
  352. 2013:12:24-11:17:25 traxxus snort[8825]: Max Content length: 1024 (Default)
  353. 2013:12:24-11:17:25 traxxus snort[8825]: Ports:
  354. 2013:12:24-11:17:25 traxxus snort[8825]: 5060
  355. 2013:12:24-11:17:25 traxxus snort[8825]: 5061
  356. 2013:12:24-11:17:25 traxxus snort[8825]: 5600
  357. 2013:12:24-11:17:25 traxxus snort[8825]:
  358. 2013:12:24-11:17:25 traxxus snort[8825]: Methods:
  359. 2013:12:24-11:17:25 traxxus snort[8825]:
  360. 2013:12:24-11:17:25 traxxus snort[8825]: invite
  361. 2013:12:24-11:17:25 traxxus snort[8825]: cancel
  362. 2013:12:24-11:17:25 traxxus snort[8825]: ack
  363. 2013:12:24-11:17:25 traxxus snort[8825]: bye
  364. 2013:12:24-11:17:25 traxxus snort[8825]: register
  365. 2013:12:24-11:17:25 traxxus snort[8825]: options
  366. 2013:12:24-11:17:25 traxxus snort[8825]: refer
  367. 2013:12:24-11:17:25 traxxus snort[8825]: subscribe
  368. 2013:12:24-11:17:25 traxxus snort[8825]: update
  369. 2013:12:24-11:17:25 traxxus snort[8825]: join
  370. 2013:12:24-11:17:25 traxxus snort[8825]: info
  371. 2013:12:24-11:17:25 traxxus snort[8825]: message
  372. 2013:12:24-11:17:25 traxxus snort[8825]: notify
  373. 2013:12:24-11:17:25 traxxus snort[8825]: benotify
  374. 2013:12:24-11:17:25 traxxus snort[8825]: do
  375. 2013:12:24-11:17:25 traxxus snort[8825]: qauth
  376. 2013:12:24-11:17:25 traxxus snort[8825]: sprack
  377. 2013:12:24-11:17:25 traxxus snort[8825]: publish
  378. 2013:12:24-11:17:25 traxxus snort[8825]: service
  379. 2013:12:24-11:17:25 traxxus snort[8825]: unsubscribe
  380. 2013:12:24-11:17:25 traxxus snort[8825]: prack
  381. 2013:12:24-11:17:25 traxxus snort[8825]:
  382. 2013:12:24-11:17:25 traxxus snort[8825]: IMAP Config:
  383. 2013:12:24-11:17:25 traxxus snort[8825]: Ports: 143
  384. 2013:12:24-11:17:25 traxxus snort[8825]: IMAP Memcap: 838860
  385. 2013:12:24-11:17:25 traxxus snort[8825]: MIME Max Mem: 838860
  386. 2013:12:24-11:17:25 traxxus snort[8825]: Base64 Decoding: Enabled
  387. 2013:12:24-11:17:25 traxxus snort[8825]: Base64 Decoding Depth: Unlimited
  388. 2013:12:24-11:17:25 traxxus snort[8825]: Quoted-Printable Decoding: Enabled
  389. 2013:12:24-11:17:25 traxxus snort[8825]: Quoted-Printable Decoding Depth: Unlimited
  390. 2013:12:24-11:17:25 traxxus snort[8825]: Unix-to-Unix Decoding: Enabled
  391. 2013:12:24-11:17:25 traxxus snort[8825]: Unix-to-Unix Decoding Depth: Unlimited
  392. 2013:12:24-11:17:25 traxxus snort[8825]: Non-Encoded MIME attachment Extraction: Enabled
  393. 2013:12:24-11:17:25 traxxus snort[8825]: Non-Encoded MIME attachment Extraction Depth: Unlimited
  394. 2013:12:24-11:17:25 traxxus snort[8825]: POP Config:
  395. 2013:12:24-11:17:25 traxxus snort[8825]: Ports: 110
  396. 2013:12:24-11:17:25 traxxus snort[8825]: POP Memcap: 838860
  397. 2013:12:24-11:17:25 traxxus snort[8825]: MIME Max Mem: 838860
  398. 2013:12:24-11:17:25 traxxus snort[8825]: Base64 Decoding: Enabled
  399. 2013:12:24-11:17:25 traxxus snort[8825]: Base64 Decoding Depth: Unlimited
  400. 2013:12:24-11:17:25 traxxus snort[8825]: Quoted-Printable Decoding: Enabled
  401. 2013:12:24-11:17:25 traxxus snort[8825]: Quoted-Printable Decoding Depth: Unlimited
  402. 2013:12:24-11:17:25 traxxus snort[8825]: Unix-to-Unix Decoding: Enabled
  403. 2013:12:24-11:17:25 traxxus snort[8825]: Unix-to-Unix Decoding Depth: Unlimited
  404. 2013:12:24-11:17:25 traxxus snort[8825]: Non-Encoded MIME attachment Extraction: Enabled
  405. 2013:12:24-11:17:25 traxxus snort[8825]: Non-Encoded MIME attachment Extraction Depth: Unlimited
  406. 2013:12:24-11:17:25 traxxus snort[8825]: DNP3 config:
  407. 2013:12:24-11:17:25 traxxus snort[8825]: Memcap: 262144
  408. 2013:12:24-11:17:25 traxxus snort[8825]: Check Link-Layer CRCs: DISABLED
  409. 2013:12:24-11:17:25 traxxus snort[8825]: Ports:
  410. 2013:12:24-11:17:25 traxxus snort[8825]: 20000
  411. 2013:12:24-11:17:25 traxxus snort[8825]:
  412. 2013:12:24-11:17:25 traxxus snort[8825]: Modbus config:
  413. 2013:12:24-11:17:25 traxxus snort[8825]: Ports:
  414. 2013:12:24-11:17:25 traxxus snort[8825]: 502
  415. 2013:12:24-11:17:25 traxxus snort[8825]:
  416. 2013:12:24-11:17:25 traxxus snort[8825]:
  417. 2013:12:24-11:17:25 traxxus snort[8825]: +++++++++++++++++++++++++++++++++++++++++++++++++++
  418. 2013:12:24-11:17:25 traxxus snort[8825]: Initializing rule chains...
  419. 2013:12:24-11:17:25 traxxus snort[8825]: 21 Snort rules read
  420. 2013:12:24-11:17:25 traxxus snort[8825]: 0 detection rules
  421. 2013:12:24-11:17:25 traxxus snort[8825]: 0 decoder rules
  422. 2013:12:24-11:17:25 traxxus snort[8825]: 21 preprocessor rules
  423. 2013:12:24-11:17:25 traxxus snort[8825]: 21 Option Chains linked into 1 Chain Headers
  424. 2013:12:24-11:17:25 traxxus snort[8825]: 0 Dynamic rules
  425. 2013:12:24-11:17:25 traxxus snort[8825]: +++++++++++++++++++++++++++++++++++++++++++++++++++
  426. 2013:12:24-11:17:25 traxxus snort[8825]:
  427. 2013:12:24-11:17:25 traxxus snort[8825]: +-------------------[Rule Port Counts]---------------------------------------
  428. 2013:12:24-11:17:25 traxxus snort[8825]: | tcp udp icmp ip
  429. 2013:12:24-11:17:25 traxxus snort[8825]: | src 0 0 0 0
  430. 2013:12:24-11:17:25 traxxus snort[8825]: | dst 0 0 0 0
  431. 2013:12:24-11:17:25 traxxus snort[8825]: | any 21 0 0 0
  432. 2013:12:24-11:17:25 traxxus snort[8825]: | nc 21 0 0 0
  433. 2013:12:24-11:17:25 traxxus snort[8825]: | s+d 0 0 0 0
  434. 2013:12:24-11:17:25 traxxus snort[8825]: +----------------------------------------------------------------------------
  435. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18213] not enabled in configuration, rule will not be used.
  436. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18400] not enabled in configuration, rule will not be used.
  437. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18405] not enabled in configuration, rule will not be used.
  438. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18409] not enabled in configuration, rule will not be used.
  439. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18410] not enabled in configuration, rule will not be used.
  440. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18411] not enabled in configuration, rule will not be used.
  441. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18412] not enabled in configuration, rule will not be used.
  442. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18421] not enabled in configuration, rule will not be used.
  443. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18444] not enabled in configuration, rule will not be used.
  444. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18449] not enabled in configuration, rule will not be used.
  445. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18501] not enabled in configuration, rule will not be used.
  446. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18502] not enabled in configuration, rule will not be used.
  447. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18504] not enabled in configuration, rule will not be used.
  448. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18505] not enabled in configuration, rule will not be used.
  449. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18641] not enabled in configuration, rule will not be used.
  450. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13718] not enabled in configuration, rule will not be used.
  451. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:12028] not enabled in configuration, rule will not be used.
  452. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15329] not enabled in configuration, rule will not be used.
  453. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17697] not enabled in configuration, rule will not be used.
  454. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17251] not enabled in configuration, rule will not be used.
  455. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15301] not enabled in configuration, rule will not be used.
  456. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17693] not enabled in configuration, rule will not be used.
  457. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13476] not enabled in configuration, rule will not be used.
  458. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13922] not enabled in configuration, rule will not be used.
  459. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:23039] not enabled in configuration, rule will not be used.
  460. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:23040] not enabled in configuration, rule will not be used.
  461. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16394] not enabled in configuration, rule will not be used.
  462. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15851] not enabled in configuration, rule will not be used.
  463. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16237] not enabled in configuration, rule will not be used.
  464. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16534] not enabled in configuration, rule will not be used.
  465. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15148] not enabled in configuration, rule will not be used.
  466. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:20825] not enabled in configuration, rule will not be used.
  467. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:8092] not enabled in configuration, rule will not be used.
  468. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13475] not enabled in configuration, rule will not be used.
  469. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13825] not enabled in configuration, rule will not be used.
  470. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13835] not enabled in configuration, rule will not be used.
  471. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:14646] not enabled in configuration, rule will not be used.
  472. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16408] not enabled in configuration, rule will not be used.
  473. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13773] not enabled in configuration, rule will not be used.
  474. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15959] not enabled in configuration, rule will not be used.
  475. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:26877] not enabled in configuration, rule will not be used.
  476. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:10127] not enabled in configuration, rule will not be used.
  477. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15522] not enabled in configuration, rule will not be used.
  478. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13425] not enabled in configuration, rule will not be used.
  479. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15149] not enabled in configuration, rule will not be used.
  480. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13418] not enabled in configuration, rule will not be used.
  481. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16405] not enabled in configuration, rule will not be used.
  482. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18249] not enabled in configuration, rule will not be used.
  483. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13897] not enabled in configuration, rule will not be used.
  484. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17663] not enabled in configuration, rule will not be used.
  485. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24971] not enabled in configuration, rule will not be used.
  486. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13471] not enabled in configuration, rule will not be used.
  487. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15451] not enabled in configuration, rule will not be used.
  488. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15452] not enabled in configuration, rule will not be used.
  489. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15456] not enabled in configuration, rule will not be used.
  490. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15974] not enabled in configuration, rule will not be used.
  491. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16150] not enabled in configuration, rule will not be used.
  492. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16179] not enabled in configuration, rule will not be used.
  493. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16182] not enabled in configuration, rule will not be used.
  494. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16329] not enabled in configuration, rule will not be used.
  495. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16337] not enabled in configuration, rule will not be used.
  496. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16504] not enabled in configuration, rule will not be used.
  497. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16505] not enabled in configuration, rule will not be used.
  498. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16509] not enabled in configuration, rule will not be used.
  499. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16561] not enabled in configuration, rule will not be used.
  500. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16562] not enabled in configuration, rule will not be used.
  501. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16563] not enabled in configuration, rule will not be used.
  502. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16564] not enabled in configuration, rule will not be used.
  503. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17118] not enabled in configuration, rule will not be used.
  504. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18064] not enabled in configuration, rule will not be used.
  505. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18180] not enabled in configuration, rule will not be used.
  506. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18661] not enabled in configuration, rule will not be used.
  507. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18662] not enabled in configuration, rule will not be used.
  508. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18663] not enabled in configuration, rule will not be used.
  509. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18664] not enabled in configuration, rule will not be used.
  510. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18665] not enabled in configuration, rule will not be used.
  511. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18666] not enabled in configuration, rule will not be used.
  512. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18667] not enabled in configuration, rule will not be used.
  513. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13417] not enabled in configuration, rule will not be used.
  514. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:26972] not enabled in configuration, rule will not be used.
  515. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13510] not enabled in configuration, rule will not be used.
  516. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13511] not enabled in configuration, rule will not be used.
  517. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:7196] not enabled in configuration, rule will not be used.
  518. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15700] not enabled in configuration, rule will not be used.
  519. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:20135] not enabled in configuration, rule will not be used.
  520. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:10480] not enabled in configuration, rule will not be used.
  521. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13826] not enabled in configuration, rule will not be used.
  522. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:14251] not enabled in configuration, rule will not be used.
  523. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15848] not enabled in configuration, rule will not be used.
  524. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15968] not enabled in configuration, rule will not be used.
  525. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16375] not enabled in configuration, rule will not be used.
  526. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24666] not enabled in configuration, rule will not be used.
  527. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:21619] not enabled in configuration, rule will not be used.
  528. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:27906] not enabled in configuration, rule will not be used.
  529. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17741] not enabled in configuration, rule will not be used.
  530. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17696] not enabled in configuration, rule will not be used.
  531. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15973] not enabled in configuration, rule will not be used.
  532. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24595] not enabled in configuration, rule will not be used.
  533. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24596] not enabled in configuration, rule will not be used.
  534. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24597] not enabled in configuration, rule will not be used.
  535. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18101] not enabled in configuration, rule will not be used.
  536. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24671] not enabled in configuration, rule will not be used.
  537. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16222] not enabled in configuration, rule will not be used.
  538. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16370] not enabled in configuration, rule will not be used.
  539. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:19350] not enabled in configuration, rule will not be used.
  540. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13975] not enabled in configuration, rule will not be used.
  541. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13976] not enabled in configuration, rule will not be used.
  542. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13977] not enabled in configuration, rule will not be used.
  543. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13978] not enabled in configuration, rule will not be used.
  544. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13979] not enabled in configuration, rule will not be used.
  545. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15503] not enabled in configuration, rule will not be used.
  546. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16154] not enabled in configuration, rule will not be used.
  547. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16156] not enabled in configuration, rule will not be used.
  548. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16158] not enabled in configuration, rule will not be used.
  549. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16228] not enabled in configuration, rule will not be used.
  550. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16320] not enabled in configuration, rule will not be used.
  551. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16658] not enabled in configuration, rule will not be used.
  552. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17115] not enabled in configuration, rule will not be used.
  553. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17199] not enabled in configuration, rule will not be used.
  554. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17201] not enabled in configuration, rule will not be used.
  555. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18220] not enabled in configuration, rule will not be used.
  556. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18414] not enabled in configuration, rule will not be used.
  557. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18630] not enabled in configuration, rule will not be used.
  558. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18631] not enabled in configuration, rule will not be used.
  559. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18640] not enabled in configuration, rule will not be used.
  560. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18669] not enabled in configuration, rule will not be used.
  561. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17647] not enabled in configuration, rule will not be used.
  562. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15328] not enabled in configuration, rule will not be used.
  563. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16649] not enabled in configuration, rule will not be used.
  564. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16662] not enabled in configuration, rule will not be used.
  565. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17765] not enabled in configuration, rule will not be used.
  566. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17762] not enabled in configuration, rule will not be used.
  567. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18063] not enabled in configuration, rule will not be used.
  568. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18676] not enabled in configuration, rule will not be used.
  569. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18673] not enabled in configuration, rule will not be used.
  570. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:21352] not enabled in configuration, rule will not be used.
  571. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18949] not enabled in configuration, rule will not be used.
  572. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15298] not enabled in configuration, rule will not be used.
  573. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13879] not enabled in configuration, rule will not be used.
  574. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13947] not enabled in configuration, rule will not be used.
  575. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13946] not enabled in configuration, rule will not be used.
  576. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13958] not enabled in configuration, rule will not be used.
  577. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13469] not enabled in configuration, rule will not be used.
  578. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13676] not enabled in configuration, rule will not be used.
  579. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13666] not enabled in configuration, rule will not be used.
  580. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13582] not enabled in configuration, rule will not be used.
  581. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13969] not enabled in configuration, rule will not be used.
  582. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13803] not enabled in configuration, rule will not be used.
  583. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13790] not enabled in configuration, rule will not be used.
  584. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13798] not enabled in configuration, rule will not be used.
  585. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13802] not enabled in configuration, rule will not be used.
  586. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13954] not enabled in configuration, rule will not be used.
  587. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15117] not enabled in configuration, rule will not be used.
  588. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:14260] not enabled in configuration, rule will not be used.
  589. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:14655] not enabled in configuration, rule will not be used.
  590. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15125] not enabled in configuration, rule will not be used.
  591. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15300] not enabled in configuration, rule will not be used.
  592. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15498] not enabled in configuration, rule will not be used.
  593. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15454] not enabled in configuration, rule will not be used.
  594. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15365] not enabled in configuration, rule will not be used.
  595. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15465] not enabled in configuration, rule will not be used.
  596. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15519] not enabled in configuration, rule will not be used.
  597. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15521] not enabled in configuration, rule will not be used.
  598. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15520] not enabled in configuration, rule will not be used.
  599. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16232] not enabled in configuration, rule will not be used.
  600. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15857] not enabled in configuration, rule will not be used.
  601. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16230] not enabled in configuration, rule will not be used.
  602. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15920] not enabled in configuration, rule will not be used.
  603. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17242] not enabled in configuration, rule will not be used.
  604. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16415] not enabled in configuration, rule will not be used.
  605. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16530] not enabled in configuration, rule will not be used.
  606. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:14772] not enabled in configuration, rule will not be used.
  607. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16343] not enabled in configuration, rule will not be used.
  608. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:23180] not enabled in configuration, rule will not be used.
  609. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17665] not enabled in configuration, rule will not be used.
  610. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15975] not enabled in configuration, rule will not be used.
  611. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15976] not enabled in configuration, rule will not be used.
  612. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17608] not enabled in configuration, rule will not be used.
  613. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17700] not enabled in configuration, rule will not be used.
  614. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:22089] not enabled in configuration, rule will not be used.
  615. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15433] not enabled in configuration, rule will not be used.
  616. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15528] not enabled in configuration, rule will not be used.
  617. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16395] not enabled in configuration, rule will not be used.
  618. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16577] not enabled in configuration, rule will not be used.
  619. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17126] not enabled in configuration, rule will not be used.
  620. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18660] not enabled in configuration, rule will not be used.
  621. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15009] not enabled in configuration, rule will not be used.
  622. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15124] not enabled in configuration, rule will not be used.
  623. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15453] not enabled in configuration, rule will not be used.
  624. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15847] not enabled in configuration, rule will not be used.
  625. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:20275] not enabled in configuration, rule will not be used.
  626. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16396] not enabled in configuration, rule will not be used.
  627. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16532] not enabled in configuration, rule will not be used.
  628. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16531] not enabled in configuration, rule will not be used.
  629. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16728] not enabled in configuration, rule will not be used.
  630. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24973] not enabled in configuration, rule will not be used.
  631. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16418] not enabled in configuration, rule will not be used.
  632. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:23847] not enabled in configuration, rule will not be used.
  633. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:10161] not enabled in configuration, rule will not be used.
  634. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:12636] not enabled in configuration, rule will not be used.
  635. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13308] not enabled in configuration, rule will not be used.
  636. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15470] not enabled in configuration, rule will not be used.
  637. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15683] not enabled in configuration, rule will not be used.
  638. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16227] not enabled in configuration, rule will not be used.
  639. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17041] not enabled in configuration, rule will not be used.
  640. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:23182] not enabled in configuration, rule will not be used.
  641. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13921] not enabled in configuration, rule will not be used.
  642. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17775] not enabled in configuration, rule will not be used.
  643. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:28088] not enabled in configuration, rule will not be used.
  644. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:28089] not enabled in configuration, rule will not be used.
  645. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:28090] not enabled in configuration, rule will not be used.
  646. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:23052] not enabled in configuration, rule will not be used.
  647. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:23053] not enabled in configuration, rule will not be used.
  648. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:26213] not enabled in configuration, rule will not be used.
  649. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:26214] not enabled in configuration, rule will not be used.
  650. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:26215] not enabled in configuration, rule will not be used.
  651. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:11672] not enabled in configuration, rule will not be used.
  652. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:11619] not enabled in configuration, rule will not be used.
  653. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17681] not enabled in configuration, rule will not be used.
  654. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17682] not enabled in configuration, rule will not be used.
  655. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17683] not enabled in configuration, rule will not be used.
  656. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17684] not enabled in configuration, rule will not be used.
  657. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18692] not enabled in configuration, rule will not be used.
  658. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18693] not enabled in configuration, rule will not be used.
  659. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18694] not enabled in configuration, rule will not be used.
  660. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18695] not enabled in configuration, rule will not be used.
  661. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18696] not enabled in configuration, rule will not be used.
  662. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18697] not enabled in configuration, rule will not be used.
  663. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18698] not enabled in configuration, rule will not be used.
  664. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18699] not enabled in configuration, rule will not be used.
  665. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:21936] not enabled in configuration, rule will not be used.
  666. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24919] not enabled in configuration, rule will not be used.
  667. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24920] not enabled in configuration, rule will not be used.
  668. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24921] not enabled in configuration, rule will not be used.
  669. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24922] not enabled in configuration, rule will not be used.
  670. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24923] not enabled in configuration, rule will not be used.
  671. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24924] not enabled in configuration, rule will not be used.
  672. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24925] not enabled in configuration, rule will not be used.
  673. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24926] not enabled in configuration, rule will not be used.
  674. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24927] not enabled in configuration, rule will not be used.
  675. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24928] not enabled in configuration, rule will not be used.
  676. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24929] not enabled in configuration, rule will not be used.
  677. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24930] not enabled in configuration, rule will not be used.
  678. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24931] not enabled in configuration, rule will not be used.
  679. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24932] not enabled in configuration, rule will not be used.
  680. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24933] not enabled in configuration, rule will not be used.
  681. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24934] not enabled in configuration, rule will not be used.
  682. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24935] not enabled in configuration, rule will not be used.
  683. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24936] not enabled in configuration, rule will not be used.
  684. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24937] not enabled in configuration, rule will not be used.
  685. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24938] not enabled in configuration, rule will not be used.
  686. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24939] not enabled in configuration, rule will not be used.
  687. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24940] not enabled in configuration, rule will not be used.
  688. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24941] not enabled in configuration, rule will not be used.
  689. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24942] not enabled in configuration, rule will not be used.
  690. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24943] not enabled in configuration, rule will not be used.
  691. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24944] not enabled in configuration, rule will not be used.
  692. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24945] not enabled in configuration, rule will not be used.
  693. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24946] not enabled in configuration, rule will not be used.
  694. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24947] not enabled in configuration, rule will not be used.
  695. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24948] not enabled in configuration, rule will not be used.
  696. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24949] not enabled in configuration, rule will not be used.
  697. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24950] not enabled in configuration, rule will not be used.
  698. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24951] not enabled in configuration, rule will not be used.
  699. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24952] not enabled in configuration, rule will not be used.
  700. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24953] not enabled in configuration, rule will not be used.
  701. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:24954] not enabled in configuration, rule will not be used.
  702. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25480] not enabled in configuration, rule will not be used.
  703. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25481] not enabled in configuration, rule will not be used.
  704. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25482] not enabled in configuration, rule will not be used.
  705. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25483] not enabled in configuration, rule will not be used.
  706. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25484] not enabled in configuration, rule will not be used.
  707. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25485] not enabled in configuration, rule will not be used.
  708. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25486] not enabled in configuration, rule will not be used.
  709. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25487] not enabled in configuration, rule will not be used.
  710. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25488] not enabled in configuration, rule will not be used.
  711. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25489] not enabled in configuration, rule will not be used.
  712. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25490] not enabled in configuration, rule will not be used.
  713. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25491] not enabled in configuration, rule will not be used.
  714. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25492] not enabled in configuration, rule will not be used.
  715. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25493] not enabled in configuration, rule will not be used.
  716. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25494] not enabled in configuration, rule will not be used.
  717. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25495] not enabled in configuration, rule will not be used.
  718. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25496] not enabled in configuration, rule will not be used.
  719. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25497] not enabled in configuration, rule will not be used.
  720. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25498] not enabled in configuration, rule will not be used.
  721. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25499] not enabled in configuration, rule will not be used.
  722. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25500] not enabled in configuration, rule will not be used.
  723. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:25501] not enabled in configuration, rule will not be used.
  724. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17667] not enabled in configuration, rule will not be used.
  725. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15118] not enabled in configuration, rule will not be used.
  726. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15119] not enabled in configuration, rule will not be used.
  727. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15120] not enabled in configuration, rule will not be used.
  728. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15121] not enabled in configuration, rule will not be used.
  729. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:18672] not enabled in configuration, rule will not be used.
  730. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17632] not enabled in configuration, rule will not be used.
  731. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:17699] not enabled in configuration, rule will not be used.
  732. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13287] not enabled in configuration, rule will not be used.
  733. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15449] not enabled in configuration, rule will not be used.
  734. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15450] not enabled in configuration, rule will not be used.
  735. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15734] not enabled in configuration, rule will not be used.
  736. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:21354] not enabled in configuration, rule will not be used.
  737. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:21355] not enabled in configuration, rule will not be used.
  738. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:23608] not enabled in configuration, rule will not be used.
  739. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13667] not enabled in configuration, rule will not be used.
  740. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13450] not enabled in configuration, rule will not be used.
  741. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:13887] not enabled in configuration, rule will not be used.
  742. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15474] not enabled in configuration, rule will not be used.
  743. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15912] not enabled in configuration, rule will not be used.
  744. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:16533] not enabled in configuration, rule will not be used.
  745. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:15327] not enabled in configuration, rule will not be used.
  746. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:8351] not enabled in configuration, rule will not be used.
  747. 2013:12:24-11:17:25 traxxus snort[8825]: DynamicPlugin: Rule [3:19187] not enabled in configuration, rule will not be used.
  748. 2013:12:24-11:17:25 traxxus snort[8825]:
  749. 2013:12:24-11:17:25 traxxus snort[8825]: +-----------------------[detection-filter-config]------------------------------
  750. 2013:12:24-11:17:25 traxxus snort[8825]: | memory-cap : 1048576 bytes
  751. 2013:12:24-11:17:25 traxxus snort[8825]: +-----------------------[detection-filter-rules]-------------------------------
  752. 2013:12:24-11:17:25 traxxus snort[8825]: | none
  753. 2013:12:24-11:17:25 traxxus snort[8825]: -------------------------------------------------------------------------------
  754. 2013:12:24-11:17:25 traxxus snort[8825]:
  755. 2013:12:24-11:17:25 traxxus snort[8825]: +-----------------------[rate-filter-config]-----------------------------------
  756. 2013:12:24-11:17:25 traxxus snort[8825]: | memory-cap : 1048576 bytes
  757. 2013:12:24-11:17:25 traxxus snort[8825]: +-----------------------[rate-filter-rules]------------------------------------
  758. 2013:12:24-11:17:25 traxxus snort[8825]: | none
  759. 2013:12:24-11:17:25 traxxus snort[8825]: -------------------------------------------------------------------------------
  760. 2013:12:24-11:17:25 traxxus snort[8825]:
  761. 2013:12:24-11:17:25 traxxus snort[8825]: +-----------------------[event-filter-config]----------------------------------
  762. 2013:12:24-11:17:25 traxxus snort[8825]: | memory-cap : 1048576 bytes
  763. 2013:12:24-11:17:25 traxxus snort[8825]: +-----------------------[event-filter-global]----------------------------------
  764. 2013:12:24-11:17:25 traxxus snort[8825]: +-----------------------[event-filter-local]-----------------------------------
  765. 2013:12:24-11:17:25 traxxus snort[8825]: | none
  766. 2013:12:24-11:17:25 traxxus snort[8825]: +-----------------------[suppression]------------------------------------------
  767. 2013:12:24-11:17:25 traxxus snort[8825]: | none
  768. 2013:12:24-11:17:25 traxxus snort[8825]: -------------------------------------------------------------------------------
  769. 2013:12:24-11:17:25 traxxus snort[8825]: Rule application order: activation->dynamic->pass->drop->sdrop->reject->alert->log
  770. 2013:12:24-11:17:25 traxxus snort[8825]: Verifying Preprocessor Configurations!
  771. 2013:12:24-11:17:25 traxxus snort[8825]: ICMP tracking disabled, no ICMP sessions allocated
  772. 2013:12:24-11:17:25 traxxus snort[8825]: IP tracking disabled, no IP sessions allocated
  773. 2013:12:24-11:17:25 traxxus snort[8825]: 0 out of 1024 flowbits in use.
  774. 2013:12:24-11:17:25 traxxus snort[8825]:
  775. 2013:12:24-11:17:25 traxxus snort[8825]: [ Port Based Pattern Matching Memory ]
  776. 2013:12:24-11:17:25 traxxus snort[8825]: +-[AC-BNFA Search Info Summary]------------------------------
  777. 2013:12:24-11:17:25 traxxus snort[8825]: | Instances : 14
  778. 2013:12:24-11:17:25 traxxus snort[8825]: | Patterns : 176
  779. 2013:12:24-11:17:25 traxxus snort[8825]: | Pattern Chars : 1041
  780. 2013:12:24-11:17:25 traxxus snort[8825]: | Num States : 813
  781. 2013:12:24-11:17:25 traxxus snort[8825]: | Num Match States : 177
  782. 2013:12:24-11:17:25 traxxus snort[8825]: | Memory : 37.74Kbytes
  783. 2013:12:24-11:17:25 traxxus snort[8825]: | Patterns : 5.13K
  784. 2013:12:24-11:17:25 traxxus snort[8825]: | Match Lists : 6.08K
  785. 2013:12:24-11:17:25 traxxus snort[8825]: | Transitions : 23.19K
  786. 2013:12:24-11:17:25 traxxus snort[8825]: +-------------------------------------------------
  787. 2013:12:24-11:17:25 traxxus snort[8825]: nfq DAQ configured to inline.
  788. 2013:12:24-11:17:25 traxxus snort[8825]: Initializing daemon mode
  789. 2013:12:24-11:17:25 traxxus snort[8833]: Daemon initialized, signaled parent pid: 8825
  790. 2013:12:24-11:17:25 traxxus snort[8833]: Reload thread starting...
  791. 2013:12:24-11:17:25 traxxus snort[8833]: Reload thread started, thread 0xf553eb70 (8834)
  792. 2013:12:24-11:17:25 traxxus snort[8833]: Checking PID path...
  793. 2013:12:24-11:17:25 traxxus snort[8833]: PID path stat checked out ok, PID path set to /var/run/
  794. 2013:12:24-11:17:25 traxxus snort[8833]: Writing PID "8833" to file "/var/run//snort_2.pid"
  795. 2013:12:24-11:17:25 traxxus snort[8833]: Set gid to 800
  796. 2013:12:24-11:17:25 traxxus snort[8833]: Set uid to 800
  797. 2013:12:24-11:17:25 traxxus snort[8833]:
  798. 2013:12:24-11:17:25 traxxus snort[8833]: --== Initialization Complete ==--
  799. 2013:12:24-11:17:25 traxxus snort[8833]: Commencing packet processing (pid=8833)
  800. 2013:12:24-11:17:25 traxxus snort[8833]: Decoding Raw IP4
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!