difficulties in alert generation

[santosh reddy <mycoolsant () yahoo co in>]

Hello all...

i am new to snort...

in three weeks..i was able to install snort

successfully and i tested snort using some basic rules

for which i got alerts in the ACID page...

now...i set the rule files in the snort.conf file (i

commented out the rule files) but i am not getting any

real alerts....

i am able to log the packets into a file but until and

unless we have the alerts (i.e alert packets) we cant

differenciate between the bad data and good data...so

how can i generate alerts using the existing rule

sets...

do we have to work on the internet for a long

time(like opening websites or pornsites) when snort is

running.

suggest me some method to generate data with the

abnormalities...

do we hav to attack our own network...and if yes how

do we do that?

the final thing is ...i want to generate real time

alerts and i want to log data and analyze that data...

please mail me as soon as possible...

thanking you

regards

Santosh Bethi

 


Yahoo! India Matrimony: Find your partner online.Post your profile.