This blog post was originally published on 12 March 2015, by Sebastian Garcia, at https://stratosphereips.org/how-to-install-and-run-argus-sniffer-in-your-raspberry-pi.html.
This is an install guide to run the Argus Sniffer in the Raspberry PI using Raspbian for use in the Stratosphere Project.
Install Argus
Download Latest Argus
wget http://qosient.com/argus/dev/argus-latest.tar.gz
Install dependencies
sudo apt-get update
sudo apt-get install bison flex libpcap-dev libpcap0.8 daemontools
Unpack
tar xfz argus-latest.tar.gz
Compile Argus server
cd argus-*
./configure
make
sudo make install
Install Stratosphere Argus configuration
The instructions and files needed to install the Stratosphere configuration are in https://github.com/stratosphereips/argus-configuration-files.git. The steps are:
- git clone https://github.com/stratosphereips/argus-configuration-files.git
- cd argus-configuration-files
- ./install.sh
This configuration will also run argus with supervise (so it is restarted when it dies).
How does everything work?
Argus is a sniffer that will capture packets in your Rpi and send flows to the Stratosphere project for analysis and protection. Once installed argus will run your Rpi and be restarted if it dies.