Snort mailing list archives
Re: Snort with Acid : Network
From: Joe Dauncey <toothbrushhead () yahoo com>
Date: Tue, 27 Aug 2002 14:05:26 +0100
j - you should try running snort as a packet sniffer at first, just to check that it's seeing all the data it's supposed to.
If you're running on a switch, or a dual-speed non-bridging hub then you won't see other traffic on the LAN
Joe At 11:17 27/08/2002, j wrote:
Hi, I have configured snort with mysql, acid. successfully in linux box. In the configuration i have specified var HOME_NET x.x.x.x/22 var EXTERNAL_NET anyNow the problem, after running snort for past 1 week... i am seeing details only of that ip address where snort is installed.and i didn't find any detail of other machines which are in network.I have done portscan from one machine to another machine, the snort machine which is in same network didn't detect.is it something more i have to do ??? , if yes...wht it should be , snice its large network... Thanx..for help j
Joe Dauncey Email: toothbrushhead () yahoo com PGP Key ID: 0xEAA034D4 ------------------------------------------------------- This sf.net email is sponsored by: OSDN - Tired of that same old cell phone? Get a new here for FREE! https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390 _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Snort with Acid : Network j (Aug 27)
- Re: Snort with Acid : Network Joe Dauncey (Aug 27)
- <Possible follow-ups>
- RE: Snort with Acid : Network Wirth, Jeff (Aug 27)
- Re: Snort with Acid : Network Jon Quiros (Aug 27)
- Re: Snort with Acid : Network j (Aug 27)
- Re: Snort with Acid : Network Jon Quiros (Aug 27)
- RE: Snort with Acid : Network McCammon, Keith (Aug 27)
- RE: Snort with Acid : Network McCammon, Keith (Aug 27)