| Author |
Message |
rjclark2 |
|
Post subject: Master/Slave Communications via openssh
 Posted: Apr 17, 2008 - 07:16 AM
|
|
Joined: Apr 17, 2008
Posts: 4
Status: Offline
|
|
| Has anyone gotten a slave win-ids system talking to a master win-ids system using ssh tunnels? I configured a putty session to tunnel port 3306 to the master system and on the slave I configure snort.conf to update the database using localhost via port 3306. I'm not seeing any alerts showing up on my base console even though I granted access to my slave's real addresse on the master's mysql DB. |
|
|
| |
|
|
|
 |
|
Morpheus |
|
|
Post subject: RE: Master/Slave Communications via openssh
Posted: Apr 17, 2008 - 11:34 AM
|
|
Site Admin
Joined: Sep 04, 2003
East Coast - USA
Posts: 1415
Location: East Coast - USA
Status: Offline
|
|
| Are you able to manually connect to the mysql server from the slave? |
_________________
Best regards,
Morpheus...
WINSNORT.com Management
|
| |
|
|
|
|
|
rjclark2 |
|
|
Post subject: RE: Master/Slave Communications via openssh
Posted: Apr 19, 2008 - 04:10 AM
|
|
Joined: Apr 17, 2008
Posts: 4
Status: Offline
|
|
| The two systems are separated by a firewall so, no I haven't actually gotten the two to communicate with each other, but the slave did work with another master that resided on the same subnet as the slave. I moved the master to a new system and updated the various config files accordingly(at least I thought I did). I guess my next step will be to move this new master to the slave's subnet for a quick verification test and see what happens. At least this will prove to me that the two can communicate with each and my problem is really with ssh. Having said this though, do you know if anyone has a master/slave topology working using openssh? Thanks for your reply. I'll let you know how I make out. Regards. |
|
|
| |
|
|
|
|
|
Morpheus |
|
|
Post subject: RE: Master/Slave Communications via openssh
Posted: Apr 20, 2008 - 02:39 AM
|
|
Site Admin
Joined: Sep 04, 2003
East Coast - USA
Posts: 1415
Location: East Coast - USA
Status: Offline
|
|
| Ok, thanks. |
_________________
Best regards,
Morpheus...
WINSNORT.com Management
|
| |
|
|
|
|
|
rjclark2 |
|
|
Post subject: RE: Master/Slave Communications via openssh
Posted: Apr 23, 2008 - 11:01 AM
|
|
Joined: Apr 17, 2008
Posts: 4
Status: Offline
|
|
| Well, I figured out my problem. The slave was talking to the master the whole time but I had the switch port configured for only tx traffic and I had commented out one of the Iicmp rules. it just so happened that once I reconfigured the switch for rx traffic and uncommented the icmp rule, the alerts started to flow. Thank you for letting me bounce this problem off of you. |
|
|
| |
|
|
|
|
|
Morpheus |
|
|
Post subject: RE: Master/Slave Communications via openssh
Posted: Apr 23, 2008 - 03:27 PM
|
|
Site Admin
Joined: Sep 04, 2003
East Coast - USA
Posts: 1415
Location: East Coast - USA
Status: Offline
|
|
| NP, glad you got it working. |
_________________
Best regards,
Morpheus...
WINSNORT.com Management
|
| |
|
|
|
|
|
|
