IDS mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Nagios

From: stefmit <stefmit () comcast net>
Date: Sat, 07 Jun 2003 12:53:39 -0500
One could build his own (any) check_ functions, and your question would relate 
to doing the proper reporting using the NSclient as basis. See here for more 
info:

http://nsclient.ready2run.nl/
http://sourceforge.net/mailarchive/forum.php?forum_id=8499

Remember - this is GPL stuff, so only the sky is the limit. On the other hand, 
if this would have been a SCO "product", ... ;>

Stef


On Saturday 07 June 2003 12:21 pm, Routledge, Jeffrey wrote:

Can Nagios report and alert on custom perfmon counters ?

-Jeff.

-----Original Message-----
From: Mikael Björn [mailto:mikael.bjorn () mibj01 dyndns org]
Sent: Sat 6/7/2003 3:58 AM
To: 'Jennifer Fountain'; FOCUS-IDS () securityfocus com
Cc:
Subject: RE: Nagios



I've been using this fine product for years both as Nagios and under
it's former name NetSaint for building production environments including
large telcos and small & medium businesses.

My opinion is that you can without a problem use SNORT with Nagios but use
the two product as separate entities and use either the SNMP gateway or
some other form of communication mechanisms in SNORT (I, myself, prefer
SNMP) to talk to Nagios.

But if you want to handle Firewall rule adaptation from SNORT I would
use SnortSAM for that. Quite a neat little hack!

Hope my $0.02 was helpful!

/Mikael Björn
Freelance Consultant

-----Original Message-----
From: Jennifer Fountain [mailto:JFountain () rbinc com
<mailto:JFountain () rbinc com> ]
Sent: Thursday, June 05, 2003 11:17 PM
To: FOCUS-IDS () securityfocus com
Subject: Nagios


Does anyone have an opinion on Nagios?  They say it can use snort and it
has it's own IDS functions to detect certain traffic.  I am wondering if
this is a good product or just hype.
Thanks!

Cheers,
Jenn


---------------------------------------------------------------------------
-

---
INTRUSION PREVENTION: READY FOR PRIME TIME?

IntruShield now offers unprecedented Intrusion IntelligenceTM capabilities
- including intrusion identification, relevancy, direction, impact and
analysis
- enabling a path to prevention.

Download the latest white paper "Intrusion Prevention: Myths, Challenges,
and Requirements" at:
http://www.securityfocus.com/IntruVert-focus-ids2
<http://www.securityfocus.com/IntruVert-focus-ids2>
---------------------------------------------------------------------------
-

---


---------------------------------------------------------------------------
- ---
INTRUSION PREVENTION: READY FOR PRIME TIME?

IntruShield now offers unprecedented Intrusion IntelligenceTM capabilities
- including intrusion identification, relevancy, direction, impact and
analysis
- enabling a path to prevention.

Download the latest white paper "Intrusion Prevention: Myths, Challenges,
and Requirements" at:
http://www.securityfocus.com/IntruVert-focus-ids2
<http://www.securityfocus.com/IntruVert-focus-ids2>
---------------------------------------------------------------------------
- ---



-------------------------------------------------------------------------------
INTRUSION PREVENTION: READY FOR PRIME TIME?

IntruShield now offers unprecedented Intrusion IntelligenceTM capabilities
- including intrusion identification, relevancy, direction, impact and analysis
- enabling a path to prevention.

Download the latest white paper "Intrusion Prevention: Myths, Challenges, and Requirements" at:
http://www.securityfocus.com/IntruVert-focus-ids2
-------------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: