Snort mailing list archives
Re: Snort, BASE, and FRW
From: Shomiron Das Gupta <shomiron () gmail com>
Date: Wed, 26 Sep 2012 01:07:46 +0530
Hi, Few questions: -- What firewalls are these? -- Do they have preinstalled snort running on them? -- Are these firewalls running on HA? These will help us get a correct analysis. -- Shomiron Das Gupta NETMONASTERY NSPL http://netmonastery.com twitter: @shomiron On Tuesday, 25 September 2012 at 7:30 PM, Joao Daniel Neves wrote:
Snort Users, I'm deploying a snort installation. The enviroment is a bit simple two firewalls. The second firewall is for high-availibilty. Of course, Snort is running in both firewalls. ;-) However, BASE only shows one sensor (with alerts from frw1). Is this acceptable? Is the the correct behavior? I think that the answer is 'yes'. Since that firewall2 is sleeping and will wake up just if firewall1 is in trouble. ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net (mailto:Snort-users () lists sourceforge net) Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- Snort, BASE, and FRW Joao Daniel Neves (Sep 25)
- Re: Snort, BASE, and FRW Shomiron Das Gupta (Sep 25)
- Re: Snort, BASE, and FRW waldo kitty (Sep 25)
- Re: Snort, BASE, and FRW waldo kitty (Sep 25)
- Re: Snort, BASE, and FRW Joao Daniel Neves (Sep 26)
- Re: Snort, BASE, and FRW Shomiron Das Gupta (Sep 25)