[Cooker-firewall] SNF: problems booting with snort and prelude enabled

Sat, 08 Dec 2001 10:50:22 -0800 

Hello

        I am running SNF 7.2, and am haveing a problem with booting while snort and 
prelude are enabled.  The network script will hang trying to bring eth1 
(external connection), and never get pass this point.  If I boot in 
interactive mode and don't start the network, then I can complete the boot. 
  At this point I can log in and start the network with the network script 
and everything works.  If I disable snort and prelude through the https 
interface, booting goes just fine???   So trying to figure this out, I 
tryed a few things.  First I looked in /etc/rc.d/rc3.d and here are the 
results of ls -l:


        S10network -> ../init.d/network*
        S11bastille-firewall -> ../init.d/bastille-firewall*
        S30syslog -> ../init.d/syslog*
        S40crond -> ../init.d/crond*
        S40snortd -> ../init.d/snortd*
        S55sshd -> ../init.d/sshd*
        S75keytable -> ../init.d/keytable*
        S80iptoip -> ../init.d/iptoip*
        S80prelude -> ../init.d/prelude*
        S85gpm -> ../init.d/gpm*
        S85httpd-naat -> ../init.d/httpd-naat*
        S95anacron -> ../init.d/anacron*
        S99local -> ../rc.local*

So I removed snort and prelude entries by hand.  Just deleted the files. 
Now I have the following entries.

        S10network -> ../init.d/network*
        S11bastille-firewall -> ../init.d/bastille-firewall*
        S30syslog -> ../init.d/syslog*
        S40crond -> ../init.d/crond*
        S55sshd -> ../init.d/sshd*
        S75keytable -> ../init.d/keytable*
        S80iptoip -> ../init.d/iptoip*
        S85gpm -> ../init.d/gpm*
        S85httpd-naat -> ../init.d/httpd-naat*
        S95anacron -> ../init.d/anacron*
        S99local -> ../rc.local*

And the system reboots just fine.  So now I entered two commands at the end 
of /etc/rc.d/rc.local file to start snort and prelude.

        /etc/rc.d/init.d/snortd start
        /etc/rc.d/init.d/prelude start

Now the system reboot just fine and snort and prelude are running.  So I 
then removed these entries from /etc/rc.d/rc.local, and replaced the 
entries in /etc/rc.d/rc3.d so that all is back to the original setup.  When 
I reboot, it hang again trying to start eth1.  Why is this.  I don't 
understand.  Does the network script detect them and do something different 
when they are there???

Also, I am using a fairly cheap nic that uses the tulip driver.


Any help would be greate

Joseph

Reply via email to