Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Remote collection of data from a Snort

From: "Guillaume" <guillaume () anteria fr>
Date: Wed, 16 Jan 2002 10:28:29 +0100 (CET)
Dans son précédent message Ian Masters écrivait :


Would it be possible using ssh.

Ian

p.s. there was no need to tell people I am your colleague.
There's no shame  in shizophrenia.



Is there a way to remotely collect data from a snort sensor with
2 network  cards connected to the same hub, one without an IP to
collect network data  in stealth mode and the other with an IP to
allow collection of data  remotely, without the sensor being
visible on the network.

I can't see how this would be possible but a colleague of mine
seems to  think that it is?

Is it?


I used to run snort this way, with one card recording traffic and the
other used to sent alerts to a remote MySQL DB.

Did not cause any trouble. Could alos be possible using syslog-ng I
think...

Guillaume

[ Sent with SquirrelMail -  http://www.squirrelmail.org     ]



_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: