Snort mailing list archives
Checkpoint FW1 Alerts to acid/Snort?
From: Marc Dreher <MarcDreher () gmx net>
Date: Wed, 9 Jan 2002 13:27:41 +0100 (MET)
Hi, This question is not 100% snort related but I hope sombody maybe able to give some hints. We are using snort sensors for intrusion detection with acid as analysis console. Besides that we use Checkpoints Firewall-1 as, who'd expect, firewalls. As we can not place a snort sensor next to every firewall, the question now is, if there is a posibility/tool to parse the dropped packets alerts generated by the firewalls somehow into the database to enable analysis with acid alongside with the snort alerts. Can anybody help here. Thanks a lot Marc -- GMX - Die Kommunikationsplattform im Internet. http://www.gmx.net _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Checkpoint FW1 Alerts to acid/Snort? Marc Dreher (Jan 09)
- RE: Checkpoint FW1 Alerts to acid/Snort? Ofir Arkin (Jan 09)
- <Possible follow-ups>
- RE: Checkpoint FW1 Alerts to acid/Snort? Fraser Hugh (Jan 09)