Re: Multiple network segment monitor with Snort
From: Anton A. Chuvakin (anton_at_chuvakin.org)
Date: 09/25/03
- Previous message: Anton A. Chuvakin: "Re: "False postive" database idea"
- In reply to: Sergio Pozo Hidalgo: "Multiple network segment monitor with Snort"
- Next in thread: kgeorgiades_at_toplayer.com: "RE: Multiple network segment monitor with Snort"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 25 Sep 2003 17:31:07 -0400 (EDT) To: Sergio Pozo Hidalgo <blitter_es@yahoo.es>
>Can I use the same physical machine (with as many ethernet cards as
>sensors I want to deploy) and use various and independent snort
>processes? I neither know if only one Snort process can control
Here is one way to do it for multiple VLANs or just multiple network
cards (full HOWTO):
http://www.securityfocus.com/infocus/1640
http://www.securityfocus.com/infocus/1643
Best,
--
Anton A. Chuvakin, Ph.D., GCI*
http://www.chuvakin.org
http://www.info-secure.org
---------------------------------------------------------------------------
Captus Networks IPS 4000
Intrusion Prevention and Traffic Shaping Technology to:
- Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
- Automatically Control P2P, IM and Spam Traffic
- Precisely Define and Implement Network Security & Performance Policies
FREE Vulnerability Assessment Toolkit - WhitePapers - Live Demo
http://www.securityfocus.com/sponsor/CaptusNetworks_focus-ids_000101
---------------------------------------------------------------------------
- Previous message: Anton A. Chuvakin: "Re: "False postive" database idea"
- In reply to: Sergio Pozo Hidalgo: "Multiple network segment monitor with Snort"
- Next in thread: kgeorgiades_at_toplayer.com: "RE: Multiple network segment monitor with Snort"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
