Re: My Snort IDS Sensor Detected Nessus Vulnerability Scan

[Eric G <eric () nixwizard net>]

On Apr 18, 2014 3:25 PM, "Teo En Ming" <teo.en.ming () gmail com> wrote:
> Hi,
>
> My Snort IDS sensor detected nessus vulnerability scan. The nessus
vulnerability scan was launched from WAN outside of HOME_NET. However, the
alerts generated were few. It seems that Snort rules are not comprehensive
enough.
>

Teo, once again, you don't have your HOME_NET defined as your external IP
but you keep insisting that Snort isn't working right. Your config is
broken, not Snort.

If you want Snort to light up like a Christmas tree when you scan your box,
tap your outside interface and define HOME_NET as your external IP address.

--
Eric
http:// www.linkedin.com/in/ericgearhart

------------------------------------------------------------------------------
Learn Graph Databases - Download FREE O'Reilly Book
"Graph Databases" is the definitive new guide to graph databases and their
applications. Written by three acclaimed leaders in the field,
this first edition is now available. Download your free book today!
http://p.sf.net/sfu/NeoTech

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!