re: Not logging any alerts ??

[twig les <twigles () yahoo com>]

Darrin,

If all things are equal (hardware, software revisions,
OS etc.) then the most likely culprit I can think of
is the ruleset's source and destination IPs that you
defined to give alerts.  If you tuned the variable for
your home net to be backnet specific for example.  
The two easiest ways to check this are to either look
thru the rules carefully, or else see if you can scan
an inside box from the outside without *either* Snort
box figuring it out.  

Sorry if this is something you thought of right away. 
If it doesn't work could you give us more detail (type
of scan, OS, version of snort...)?

twigles

__________________________________________________
Do You Yahoo!?
Get personalized email addresses from Yahoo! Mail
http://personal.mail.yahoo.com/

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users