Snort mailing list archives
RE: ideal setup
From: Kevin Brown <Kevin.M.Brown () asu edu>
Date: Thu, 08 Aug 2002 08:16:41 -0700
Only if you're worried what people are doing inside your network to each other. For a home network I don't think you need to worry too much about mom and dad hacking your box (at least I don't). -----Original Message----- From: Keith Young [mailto:kyoung () v-one com] Sent: Wednesday, August 07, 2002 4:46 PM To: Kevin Brown Cc: snort-users () lists sourceforge net Subject: Re: [Snort-users] ideal setup Kevin Brown wrote:
Then (if snort doesn't have this already) maybe snort should be used in non-promiscuous mode if it is run from the firewall because all the traffic destined for your network has to go through the firewall.
Good point. However you will still need to run another copy of Snort for your inside network (for traffic that doesn't go through the firewall), right? FYI, Snort does support non-promiscuous mode with the "-p" switch. -- -- --Keith Young -kyoung () v-one com
Current thread:
- ideal setup Robert Cole (Aug 07)
- Re: ideal setup quentyn (Aug 07)
- Re: ideal setup Robert Cole (Aug 07)
- Re: ideal setup Keith Young (Aug 07)
- Re: ideal setup Robert Cole (Aug 07)
- Re: ideal setup Robert Cole (Aug 07)
- Re: ideal setup quentyn (Aug 07)
- <Possible follow-ups>
- RE: ideal setup Kevin Brown (Aug 07)
- Re: ideal setup Keith Young (Aug 07)
- RE: ideal setup twig les (Aug 09)
- RE: ideal setup Kevin Brown (Aug 08)