Snort mailing list archives
Re: Preventing Attacks
From: Jeffrey Taylor <jeff.taylor () ieee org>
Date: Wed, 26 Jun 2002 09:48:43 -0500
Is it possible to have Snort listen inside the firewall? This is on a one host set up. I would like to see what is getting thru the firewall, not what is thrown at the firewall. TIA, Jeffrey Quoting McCammon, Keith <Keith.McCammon () eadvancemed com>:
Please specify you OS, as well as your sensor placement relative to the target host and any firewalls. It would also help to specify what type of help you seek. Do you want signature explanations? Do you want to know if your hosts were compromised? Do you want information on hardening your hosts? Do you want to know how to reconfigure your firewall so that Snort doesn't get so much of this crap fired across her bow?
------------------------------------------------------- Sponsored by: ThinkGeek at http://www.ThinkGeek.com/ _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Preventing Attacks David Alexandre M. de Carvalho (Jun 25)
- <Possible follow-ups>
- RE: Preventing Attacks McCammon, Keith (Jun 26)
- Re: Preventing Attacks Jeffrey Taylor (Jun 26)
- Re: Preventing Attacks Jeff Taylor (Jun 27)
- Re: Preventing Attacks John Sage (Jun 28)
- Re: Preventing Attacks Jeffrey Taylor (Jun 26)
- Re: Preventing Attacks Jeffrey Taylor (Jun 27)
- RE: Preventing Attacks Hicks, John (Jun 26)
- RE: Preventing Attacks Slighter, Tim (Jun 26)