No alerts: Good or bad

[Adam Shephard <sfnative33 () yahoo com>]

I've had Snort running on two different networks for
about a week now. Both machines are running Debian
Woody/Snort 1.8.4beta1-3/MySQL/ACID.

I have no alerts on either box. I tried running a
portscan using nmap both on the internal network and
from the external network. The internal scans showed
up, provided I had the HOME_NET set up as "any". The
external scans didn't show up at all but that could
just be my firewalls (OpenBSD w/pf on one net,
Watchguard Firebox on the other) doing their jobs.

So, do I assume all is well or are there other
approaches I should take in terms of testing?

__________________________________________________
Do you Yahoo!?
Yahoo! Shopping - Send Flowers for Valentine's Day
http://shopping.yahoo.com


-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users