[Résolu moi-même][NOT RESOLVABLE-RESOLUTION FAILURE] Mailtrail doesn't work

Started by Darkopnsense, January 21, 2020, 03:36:57 PM

Previous topic - Next topic
Print
Go Down Pages 1 2 3
User actions
January 24, 2020, 03:07:03 PM #30 Last Edit: January 24, 2020, 03:16:32 PM by Darkopnsense
root@Pare-Feu:/ # /usr/local/etc/rc.d/opnsense-maltrailsensor stop
Stopping maltrailsensor.
Waiting for PIDS: 89396.
root@Pare-Feu:/ # python2.7 /usr/local/share/maltrail/sensor.py
Maltrail (sensor) #v0.15.56

using configuration file '/usr/local/share/maltrail/maltrail.conf'
using '/root/var/log/maltrail' for log storage
[?] at least 384MB of free memory required
using '/root/.maltrail/trails.csv' for trail storage (last modification: 'Fri, 24 Jan 2020 08:53:09 GMT')
loading trails...
1,593,791 trails loaded
opening interface 'em0'
opening interface 'ath0_wlan1'
setting capture filter 'ip or ip6'
preparing capture buffer...
creating 3 more processes (out of total 4)
[?] please install 'schedtool' for better CPU scheduling
  • running...

    TEST

    on a windows computer
    cmd
    ping 136.161.101.53 -t
    = Réponse de 136.161.101.53 : octets=32 temps=98 ms TTL=47


    on Maltrail (http://192.168.66.66:8338)
    = no matching threats found
Depuis 2017
X7SPA-HF, Intel(R) ATOM(TM) D525, 4Go RAM, 120Go, 2 Lan 24.1.2_1
APU4c, 4Go RAM, 120Go, 4 Lan 24.1.10_8
APU3a, 2Go RAM, 60Go, 3 Lan 24.1.2_1
APU2c, 2Go RAM, 60Go, 3 Lan 23.7.1_3
BIOS A JOUR (v4.19.0.1).
January 24, 2020, 03:32:13 PM #31 Last Edit: January 24, 2020, 04:12:35 PM by apiods
Not wanting to hijack someone's thread, especially whilst fixing the problem is still in progress...

But I'm interested to see how this works out. I've just installed Maltrail and also getting no events showing in the GUI (but it's only been running ~20 minutes, so will wait a while longer ;)
January 24, 2020, 05:03:49 PM #32
Quote from: apiods on January 24, 2020, 03:32:13 PM
Not wanting to hijack someone's thread, especially whilst fixing the problem is still in progress...

But I'm interested to see how this works out. I've just installed Maltrail and also getting no events showing in the GUI (but it's only been running ~20 minutes, so will wait a while longer ;)

Update on my install...

I still didn't see any events for a while.
I had the Monitor Interface set to listen on a 'trunk' interface (i.e. the interface has no native vlan).
I changed this to listen on a particular vlan interface (i.e. local network), pinged the 'bad IP' and the event showed up in Maltrain GUI straight away  :)
Will continue to monitor.
January 27, 2020, 04:39:12 PM #33
Hi,

The solution is elsewhere than on this post.

I am wonderful, another post that I self-repaired

Thank you for your mimugmail involvement.

Regards,
Depuis 2017
X7SPA-HF, Intel(R) ATOM(TM) D525, 4Go RAM, 120Go, 2 Lan 24.1.2_1
APU4c, 4Go RAM, 120Go, 4 Lan 24.1.10_8
APU3a, 2Go RAM, 60Go, 3 Lan 24.1.2_1
APU2c, 2Go RAM, 60Go, 3 Lan 23.7.1_3
BIOS A JOUR (v4.19.0.1).
Print
Go Up Pages 1 2 3
User actions