Snort mailing list archives
Re: Snort install
From: Pratik Narang <pratik.cse.bits () gmail com>
Date: Tue, 3 Jul 2012 20:18:15 +0530
Thanks a lot for your reply Joel. Can you elaborate the reasons for your preference, and the effects that might be there if I choose to *not* go with it? effects on Snort's accuracy? performance/speed? scalability issues at higher bandwidths? On Tue, Jul 3, 2012 at 7:51 PM, Joel Esler <jesler () sourcefire com> wrote:
You can do that, and many do. I suggest at least having two NICs however. One for capture and one for management. On Mon, Jul 2, 2012 at 1:29 AM, Pratik Narang <pratik.cse.bits () gmail com>wrote:Hi all, I tried installed Snort using the set up guide available for Ubuntu 10.04 at http://www.snort.org/docs. The network topology suggested has a IDS/IPS system and a Management Workstation. What difference it will make to my approach of using Snort if I *do not *have a separate a Management Workstation and just use one system for both purposes? What things will differ in snort.conf, in banyard2.conf, in /etc/network/interfaces from the usual set up guide? Thanks. ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!-- Joel Esler Senior Research Engineer, VRT OpenSource Community Manager Sourcefire
------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- Snort install Pratik Narang (Jul 01)
- Re: Snort install Joel Esler (Jul 03)
- Re: Snort install Pratik Narang (Jul 03)
- Re: Snort install Tony Robinson (Jul 03)
- Re: Snort install Pratik Narang (Jul 03)
- Re: Snort install Joel Esler (Jul 03)