Snort configuration -- Conclusion

This segment wraps up the Snort configuration tip.

In the next Snort Report we will see what sorts of activity Snort might detect given this limited configuration. In the Snort Report that follows we will explore Snort's new dynamic preprocessors (FTP, TELNET, SMTP, SSH, DCE-RPC and DNS) by adding them to the configuration file.

Snort: Understanding the configuration file

Introduction: Upgrade to Snort 2.6.1.2
The snort.conf file
Defining IP ranges of interest
Defining ports of interest
Core preprocessors
Non-dynamic preprocessors
Conclusion

About the author
Richard Bejtlich is founder of TaoSecurity, author of several books on network security monitoring, including Extrusion Detection: Security Monitoring for Internal Intrusions, and operator of the TaoSecurity blog.

This was last published in January 2007

Dig Deeper on Managed network services technology

All
News
Get Started
Evaluate
Manage
Problem Solve

MicroscopeUK

Commvault doubles partner rewards with Advantage Programme

Data management player increasing investment in supporting top partners with fresh channel programme

Interview: Graeme Watt, CEO of Softcat

Softcat boss talk about office openings, organic growth and why he doesn't lie awake at night worrying about the future of the ...

SonicWall increasing support for MSSPs

The security player has been actively looking to work with more MSSPs and has also been investing in a direct touch team to drive...

SearchSecurity

Cisco engineer: Why we need more women in cybersecurity

Progress on the cybersecurity gender gap has been slow but steadier recently. Cisco engineer Michele Guel explains how to hack ...

Experts: Facebook fine by FTC should be wake-up call for all

Facebook will reportedly be hit with a $5 billion fine by the FTC following an investigation into multiple privacy issues, and ...

Cybersecurity skills shortage prompts new hiring approach

Hiring managers are widening the pool of candidates in response to the cybersecurity skills shortage. Learn how a parks and ...

SearchStorage

Western Digital IntelliFlash adds NVMe, SAS storage

The expanded Western Digital IntelliFlash models include low-end N5100 NVMe and high-density HD2160 SAS arrays. IntelliFlash OS ...

Google's Elastifile buy shows need for cloud file storage

Google buys partner Elastifile's scale-out file system to bolster options for enterprises looking to shift NFS-based applications...

IBM Spectrum storage refresh targets object, AI metadata

IBM Spectrum storage sharpens its focus on AWS backup and metadata across heterogeneous storage. IBM increases the density of ...

SearchNetworking

BGP tutorial: How the routing protocol works

Border Gateway Protocol is the complex routing protocol that literally makes the internet work. This tutorial walks you through ...

Cisco's acquisition of Acacia bolsters service provider offerings

Cisco plans to buy Acacia for $2.6 billion. Cisco's acquisition will make it a direct supplier of optical interconnects for the ...

How cloud network services affect transformation and security

In this roundup of networking blogs, experts dive into three facets of networking that cloud can affect: network transformation, ...

SearchCloudComputing

Why the PaaS market failed to live up to the hype

PaaS' days as a stand-alone tech may be numbered as the cloud layer gets absorbed by IaaS platforms from AWS and others. See what...

Linode GPU instances offer accelerated computing power

Linode's GPU instances are built on Nvidia's Quadro RTX 6000 GPU cards, designed to power high-performance applications and use ...

7 key characteristics of cloud computing

Companies rely on the cloud for modern app development. Learn the key features that differentiate cloud computing from ...

SearchDataManagement

Snowflake product VP expounds on data warehouse for the cloud

In this Q&A, Christian Kleinerman, vice president of product development at cloud data warehouse vendor Snowflake, talks about ...

RavenDB Cloud automates database management

RavenDB's managed cloud database service, RavenDB Cloud, intends to automate security processes, reduce overhead and cater to ...

Big data containers gain wider appeal in system deployments

This handbook examines the use of Docker containers in Kubernetes clusters to run big data systems and offers insight on ...

SearchBusinessAnalytics

ThoughtSpot strategic partnerships help add capabilities

Through its partnership strategy, ThoughtSpot is adding to its capabilities as a BI software vendor the same way others are ...

IBM battling to change perception of Cognos Analytics BI platform

While some see IBM's BI suite as being too complicated and expensive for citizen data scientists, the company is adding updates ...

Howard Dresner talks business intelligence trends

In this Q&A, analyst Howard Dresner talks about trends in the business intelligence software market, industry consolidation and ...

Dig Deeper on Managed network services technology

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.