Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Snort-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Snort-users] Snort Analisys platform

from [Kevin Johnson] Network Security [Permanent Link]
Subject: Re: [Snort-users] Snort Analisys platform
Date: Sat, 27 Nov 2004 16:01:09 -0500 
On Sat, 2004-11-27 at 04:43, mamo wrote:

Hello Everybody.

I am working for a company that want to deploy a large infrastructure
based on Snort for N-IDS. I plan we will have around 20-30 network
sensor and I think it is possibile they will produce more than 2
Million Events / Day (they are the number of event present in the
other commercial IDS platform already present).

I am confident Snort can work well in this enviroment, but I am
evaluating software for the event analisys task. I used Acid for some
times in smaller enviroment, and really like it, but I don't know if
it can permit user to query events with a db with more than 10 Million
events.


While ACID/BASE can be used in this size of an environment, it will be
painfully slow and basically unusable.  The BASE team is currently
focusing almost all of our efforts at increasing performance of BASE to
handle installations of this size.  Hopefully the next version will be
the one for you.<g>

Thanks
Kevin Johnson
-------------------
BASE Project Lead
http://sourceforge.net/projects/secureideas
http://base.secureideas.net
The next step in IDS analysis!

Attachment: signature.asc
Description: This is a digitally signed message part

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Snort-users] unsubscribe, Pierre@jailasolution.com
Next by Date:  Re: [Snort-users] Packet loss, Donofrio, Lewis
Previous by Thread:  [Snort-users] Snort Analisys platform, mamo
Next by Thread:  Re: [Snort-users] Snort Analisys platform, Andreas Östling
Indexes:  [Date] [Thread] [Top] [All Lists]