Network Security: Detailed info on Re: [Snort-users] ids-load-balancing-HOWTO

Subject:	Re: [Snort-users] ids-load-balancing-HOWTO
Date:	Thu, 28 Jul 2005 08:49:06 -0400

Jeremy M. Guthrie wrote:

I have created a new Howto for creating a multi-gigabit-per second IDS load 
balancer/distributor.


Those of you running any mainstream BSD variant may prefer using Pf to
accomplish the same goal.  I just blogged an excerpt from my upcoming
book "Extrusion Detection" that describes how to split and duplicate
traffic using the Pf dup-to feature.

http://taosecurity.blogspot.com/2005/07/distributed-traffic-collection-with-pf.html

I think it's considerably simpler, and only Pf (integrated with
mainstream BSDs) is required.

Sincerely,

Richard
http://www.taosecurity.com


-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO September
19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
_______________________________________________
Snort-users mailing list
Snort-users@lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list

<Prev in Thread]	Current Thread	[Next in Thread>
[Snort-users] ids-load-balancing-HOWTO, Jeremy M. Guthrie Re: [Snort-users] ids-load-balancing-HOWTO, Richard Bejtlich <=

Previous by Date:	[Snort-users] ids-load-balancing-HOWTO, Jeremy M. Guthrie
Next by Date:	[Snort-users] http_inspect ?, John Hally
Previous by Thread:	[Snort-users] ids-load-balancing-HOWTO, Jeremy M. Guthrie
Next by Thread:	[Snort-users] http_inspect ?, John Hally
Indexes:	[Date] [Thread] [Top] [All Lists]