2015-09-03 01:58:29 +08:00
|
|
|
#
|
|
|
|
|
# Dockerfile for snort
|
|
|
|
|
#
|
|
|
|
|
|
2018-08-26 14:55:20 +08:00
|
|
|
FROM centos:7
|
2017-05-08 07:05:07 +08:00
|
|
|
MAINTAINER kev <noreply@easypi.pro>
|
2015-09-03 01:58:29 +08:00
|
|
|
|
2016-06-04 14:02:26 +08:00
|
|
|
ENV DAQ_VERSION 2.0.6
|
2019-06-14 23:03:05 +08:00
|
|
|
ENV SNORT_VERSION 2.9.13
|
2018-08-26 14:55:20 +08:00
|
|
|
ENV BASE_URL https://www.snort.org/downloads
|
2016-06-04 14:02:26 +08:00
|
|
|
|
|
|
|
|
RUN set -xe \
|
2018-08-26 14:55:20 +08:00
|
|
|
&& yum -y install epel-release libdnet \
|
|
|
|
|
&& yum -y install ${BASE_URL}/snort/daq-${DAQ_VERSION}-1.centos7.x86_64.rpm \
|
|
|
|
|
${BASE_URL}/snort/snort-${SNORT_VERSION}-1.centos7.x86_64.rpm \
|
2018-10-26 07:23:14 +08:00
|
|
|
&& mkdir -p /etc/snort/rules \
|
2018-08-26 14:55:20 +08:00
|
|
|
&& curl -sSL ${BASE_URL}/community/community-rules.tar.gz | \
|
|
|
|
|
tar xz --strip 1 -C /etc/snort/rules/ community-rules/community.rules \
|
|
|
|
|
&& touch /etc/snort/rules/local.rules \
|
|
|
|
|
/etc/snort/rules/black_list.rules \
|
|
|
|
|
/etc/snort/rules/white_list.rules \
|
|
|
|
|
&& mkdir -p /etc/snort/so_rules \
|
|
|
|
|
/etc/snort/preproc_rules \
|
|
|
|
|
/usr/local/lib/snort_dynamicrules \
|
|
|
|
|
&& ln -s /usr/lib64/libdnet.so.1 /usr/local/lib/libdnet.1 \
|
|
|
|
|
&& yum clean all
|
|
|
|
|
|
|
|
|
|
COPY data/snort.conf /etc/snort/snort.conf
|
2015-09-03 01:58:29 +08:00
|
|
|
|
2015-09-03 10:08:27 +08:00
|
|
|
ENTRYPOINT ["snort"]
|
|
|
|
|
CMD ["--help"]
|
