Snort mailing list archives

Checkpoint FW1 Alerts to acid/Snort?

From: Marc Dreher <MarcDreher () gmx net>
Date: Wed, 9 Jan 2002 13:27:41 +0100 (MET)

Hi,

This question is not 100% snort related but I hope sombody maybe able to
give some hints. We are using snort sensors for intrusion detection with acid as
analysis console. Besides that we use Checkpoints Firewall-1 as, who'd
expect, firewalls. As we can not place a snort sensor next to every firewall, the
question now is, if there is a posibility/tool to parse the dropped packets
alerts generated by the firewalls somehow into the database to enable analysis
with acid alongside with the snort alerts. 
Can anybody help here.

Thanks a lot

Marc

-- 
GMX - Die Kommunikationsplattform im Internet.
http://www.gmx.net


_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

Checkpoint FW1 Alerts to acid/Snort? Marc Dreher (Jan 09)
- RE: Checkpoint FW1 Alerts to acid/Snort? Ofir Arkin (Jan 09)
- <Possible follow-ups>
- RE: Checkpoint FW1 Alerts to acid/Snort? Fraser Hugh (Jan 09)