search

StamusNetworks / SELKS

A Suricata based IDS/IPS/NSM distro
https://www.stamus-networks.com/open-source/#selks
GNU General Public License v3.0
1.46k stars 286 forks source link

Docker support for Mac OS #404

Open LasseKrache opened 2 years ago

LasseKrache commented 2 years ago

Is there an existing feature request that has already been created?

Is your feature request related to a problem? Please describe.

I've tried to start the docker version of SELKS on my MacBook Pro (macOS version 12.3.1), but this doesn't work.

_(Side note: I cannot reproduce the first error regarding "Error response from daemon: failed to mount local volume: mount ./containers-data/suricata/logrotate:/var/lib/docker/volumes/docker_suricata-logrotate/_data, flags: 0x1000: no such file or directory" ... After executing the easy-setup.sh again and again I only get the message below, though I have tried to remove all existing docker containers and images)_

I have started the "basic installation" described here: https://github.com/StamusNetworks/SELKS/wiki/Docker; this is the output from "sudo ./easy-setup.sh":

DISCLAIMER : This script comes with absolutely no warranty. It provides a quick and easy way to install SELKS on your system

Altough this script should run properly on major linux distribution, it has only been tested on Debian 10, Debian 11, Ubuntu 20.04 and Centos 8

Press any key to continue or ^c to exit

  This version of SELKS relies on docker containers. We will now check if docker is already installed

##################
#  INSTALLATION  #
##################

+ Docker installation found: Docker version 20.10.14, build a224086349
+ Docker seems to be installed properly
+ docker-compose installation found
  Found existing portainer installation, skipping...

Generating a RSA private key
................................................................................................................................................................+++++
....+++++
writing new private key to '/etc/nginx/ssl/scirius.key'
-----
+ Certificate generated successfully
+ Certificate match private key

##################
#    SETTINGS    #
##################

 Network interfaces detected:
ls: /sys/class/net: No such file or directory
Please type in interface or space delimited interfaces below and hit "Enter".
Choose the interface(s) that is (are) one the network(s) you want to monitor
Example: eth1
OR
Example: eth1 eth2 eth3

Configure threat detection for INTERFACE(S):

And no matter what I try as a NIC name (eth1, en6), the script cannot be completed successfully.

Describe the solution you would like?

I would like to check out the SELKS docker system on my MacBook, i.e. the same functionality as on linux systems.

Alternative Solutions

No response

Additional Context

No response

pevma commented 2 years ago

Thank you for posting this as per our Discord chat. Mac Os is not yet supported - we need to add it in.