Network Security: Detailed info on [Snort-users] recommendation for monitoring traffic

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Snort-Users

Subject:	[Snort-users] recommendation for monitoring traffic
Date:	Thu, 27 Oct 2005 08:00:17 -0700 (PDT)

Subject:

[Snort-users] recommendation for monitoring traffic

Date:

Thu, 27 Oct 2005 08:00:17 -0700 (PDT)

Hi all, Curently, I span the firewall port on teh core switch to the snort monitoring port only for Rx traffic. The snort is placed inside firewall.I manage it through the second NIC on the Snort box. Should I monitor both TX/Rx traffic? If I want to exclude one server from the monitoring segment, what's the syntax? Thanks in advance, John BTW, I tried to exclude on server from this motoring segment --------------------------------- Yahoo! FareChase - Search multiple travel sites in one click.

<Prev in Thread]	Current Thread	[Next in Thread>
[Snort-users] recommendation for monitoring traffic, John Friedman <= Re: [Snort-users] recommendation for monitoring traffic, Matt Kettler

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: [Snort-users] BO preproc exploit published, Murali Raju
Next by Date:	Re: [Snort-users] recommendation for monitoring traffic, Matt Kettler
Previous by Thread:	[Snort-users] Rule order activation, Nicÿffffa4
Next by Thread:	Re: [Snort-users] recommendation for monitoring traffic, Matt Kettler
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: [Snort-users] BO preproc exploit published, Murali Raju

Next by Date:

Re: [Snort-users] recommendation for monitoring traffic, Matt Kettler

Previous by Thread:

[Snort-users] Rule order activation, Nicÿffffa4

Next by Thread:

Re: [Snort-users] recommendation for monitoring traffic, Matt Kettler

Indexes:

[Date] [Thread] [Top] [All Lists]