| Search Site |
| Search Rules |
| Account |
| not registered? |
| can't login? |
| user preferences |
 |
 |
|
|||||||||||||||||||
Next: 6.1 I hear people Up: The Snort FAQ Previous: 5.8 How do you
6 Getting Fancy
Subsections
- 6.1 I hear people talking about ``Barnyard''. What's that?
- 6.2 How do I process those Snort logs into reports?
- 6.3 How do I log to multiple databases or output plugins?
- 6.4 How can I test Snort without having an Ethernet card or a connection to other computers?
- 6.5 How to start Snort as a win32 service?
- 6.6 Is it possible with snort to add a ipfilter/ipfw rule to a firewall?
- 6.7 What is the best way to use Snort to block attack traffic?
- 6.8 Snort complains about the ``react'' keyword...
- 6.9 How do I get Snort to e-mail me alerts?
- 6.10 How do I log a specific type of traffic and send alerts to syslog?
- 6.11 Is it possible to have Snort call an external program when an alert is raised?
- 6.12 How can I use Snort to log HTTP URLs or SMTP traffic?
- 6.13 How can I move data from the snort db to snort_archive db like ACID does?
- 6.14 What are some resources that I can use to understand more about source addresses logged and where they are coming from?
- 6.15 How do I understand this traffic and do IDS alert analysis?
- 6.16 How can I examine logged packets in more detail?
Nigel Houghton 2006-10-02
| site feedback | Terms of Use | Privacy Policy | forum archives ©2008 Snort and Sourcefire are registered trademarks of Sourcefire, Inc. All rights reserved. |