2015-09-02 19:58:29 +02:00
|
|
|
#
|
|
|
|
# Dockerfile for snort
|
|
|
|
#
|
|
|
|
|
2020-08-14 05:26:15 +02:00
|
|
|
FROM centos:8
|
2020-06-08 07:20:41 +02:00
|
|
|
MAINTAINER EasyPi Software Foundation
|
2015-09-02 19:58:29 +02:00
|
|
|
|
2021-08-12 12:33:10 +02:00
|
|
|
ENV SNORT_VERSION=2.9.18
|
2020-08-14 05:26:15 +02:00
|
|
|
ENV SNORT_URL=https://www.snort.org/downloads/snort/snort-${SNORT_VERSION}-1.centos8.x86_64.rpm
|
2020-06-08 07:20:41 +02:00
|
|
|
ENV RULES_URL=https://www.snort.org/downloads/community/community-rules.tar.gz
|
2016-06-04 08:02:26 +02:00
|
|
|
|
|
|
|
RUN set -xe \
|
2020-06-08 08:29:13 +02:00
|
|
|
&& yum -y install epel-release jq libdnet \
|
2020-06-08 07:20:41 +02:00
|
|
|
&& yum -y install ${SNORT_URL} \
|
2018-10-26 01:23:14 +02:00
|
|
|
&& mkdir -p /etc/snort/rules \
|
2020-06-08 07:20:41 +02:00
|
|
|
&& curl -sSL ${RULES_URL} | \
|
2018-08-26 08:55:20 +02:00
|
|
|
tar xz --strip 1 -C /etc/snort/rules/ community-rules/community.rules \
|
|
|
|
&& touch /etc/snort/rules/local.rules \
|
|
|
|
/etc/snort/rules/black_list.rules \
|
|
|
|
/etc/snort/rules/white_list.rules \
|
|
|
|
&& mkdir -p /etc/snort/so_rules \
|
|
|
|
/etc/snort/preproc_rules \
|
|
|
|
/usr/local/lib/snort_dynamicrules \
|
|
|
|
&& ln -s /usr/lib64/libdnet.so.1 /usr/local/lib/libdnet.1 \
|
2020-06-08 08:16:46 +02:00
|
|
|
&& curl -sSL https://bootstrap.pypa.io/get-pip.py | python \
|
2021-07-01 21:32:49 +02:00
|
|
|
&& pip install --no-cache-dir idstools \
|
2018-08-26 08:55:20 +02:00
|
|
|
&& yum clean all
|
|
|
|
|
|
|
|
COPY data/snort.conf /etc/snort/snort.conf
|
2020-06-08 08:16:46 +02:00
|
|
|
COPY data/u2json.conf /etc/snort/u2json.conf
|
2015-09-02 19:58:29 +02:00
|
|
|
|
2015-09-03 04:08:27 +02:00
|
|
|
ENTRYPOINT ["snort"]
|
|
|
|
CMD ["--help"]
|