Re: Identifying Packets

From: Danny Conte (danny@conte.on.ca)
Date: 12/31/01

• Previous message: Robert D. Hughes: "RE: SNMP traps in Snort"
• In reply to: raj@ealcatraz.com: "Identifying Packets"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: Danny Conte <danny@conte.on.ca>
To: raj@ealcatraz.com
Date: 31 Dec 2001 09:24:06 -0500

On Sat, 2001-12-29 at 08:59, raj@ealcatraz.com wrote:
>
>
> Hello,
> I'm a Newbie to this list, I have little experience in
> NIDS.
> During simulation and evaluation we do reset packets
> with help of the NIDS, and its working very well. My
> question is how to identify that the packets has been
> reseted or which M/c is reseting the packets.Hope it
> can be done in snort, how about others.
>
> Thanks in Advance,
> Raj

Raj,

Sniffers are best to ensure that RST are generated correctly and that
the session is terminated.

-danny

---

• Previous message: Robert D. Hughes: "RE: SNMP traps in Snort"
• In reply to: raj@ealcatraz.com: "Identifying Packets"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > focus-ids  > 2001-12