Joseph Watson <[EMAIL PROTECTED]> writes: > Hello > > I am running SNF 7.2, and am haveing a problem with booting while > snort and prelude are enabled. The network script will hang trying to > bring eth1 (external connection), and never get pass this point. If I > boot in interactive mode and don't start the network, then I can complete > the boot. At this point I can log in and start the network with the > network script and everything works. If I disable snort and prelude > through the https interface, booting goes just fine??? So trying to > figure this out, I tryed a few things. First I looked in /etc/rc.d/rc3.d > and here are the results of ls -l:
Hello there, Ive already answered to this previously ... I'll paste here the answer quote ------------------------------------------------------------------------------------ 1. Snort For the moment, if one activates snort, the computer will freeze while rebooting. The solution has been to boot in single mode and deactivate snort. This solution is more a hack. Here is the real solution: edit the /sbin/ifup-local file and then, at the end of the file, replace the services_to_restart="snortd prelude" line with the following one: services_to_restart="" 2. Prelude make sure you add the right events for prelude: cd /usr/share/naat/events/ the command find -name "*snortd*" will give you a list with all the snortd events: ./ADSLProviderDNS1/pre/stop--snortd ./ADSLProviderDNS2/post/start--snortd ./ADSLProviderDNS2/pre/stop--snortd ./Eth0IP/post/start--snortd ./Eth0IP/pre/stop--snortd ... The idea is to add the same events for prelude. Here is a solution in command line. then L=`find -name "*snortd*" | sed -e "s/snortd/prelude/" | xargs ` you can verify it with the command for i in $L; do echo $i; done now, create the events for prelude: for i in $L; do touch $i; done find -name "*prelu*" will display the same events as for snort. End of the fix. PS. You will find a new version of naat with these fixes on the mirrors. cheers, -------------------------------------------------------------------------- end of quote > > > S10network -> ../init.d/network* > S11bastille-firewall -> ../init.d/bastille-firewall* > S30syslog -> ../init.d/syslog* > S40crond -> ../init.d/crond* > S40snortd -> ../init.d/snortd* > S55sshd -> ../init.d/sshd* > S75keytable -> ../init.d/keytable* > S80iptoip -> ../init.d/iptoip* > S80prelude -> ../init.d/prelude* > S85gpm -> ../init.d/gpm* > S85httpd-naat -> ../init.d/httpd-naat* > S95anacron -> ../init.d/anacron* > S99local -> ../rc.local* > > So I removed snort and prelude entries by hand. Just deleted the files. > Now I have the following entries. > > S10network -> ../init.d/network* > S11bastille-firewall -> ../init.d/bastille-firewall* > S30syslog -> ../init.d/syslog* > S40crond -> ../init.d/crond* > S55sshd -> ../init.d/sshd* > S75keytable -> ../init.d/keytable* > S80iptoip -> ../init.d/iptoip* > S85gpm -> ../init.d/gpm* > S85httpd-naat -> ../init.d/httpd-naat* > S95anacron -> ../init.d/anacron* > S99local -> ../rc.local* > > And the system reboots just fine. So now I entered two commands at the > end of /etc/rc.d/rc.local file to start snort and prelude. > > /etc/rc.d/init.d/snortd start > /etc/rc.d/init.d/prelude start > > Now the system reboot just fine and snort and prelude are running. So I > then removed these entries from /etc/rc.d/rc.local, and replaced the > entries in /etc/rc.d/rc3.d so that all is back to the original setup. > When I reboot, it hang again trying to start eth1. Why is this. I don't > understand. Does the network script detect them and do something > different when they are there??? > > Also, I am using a fairly cheap nic that uses the tulip driver. > > > Any help would be greate > > Joseph > > -- Florin http://www.mandrakesoft.com
