• snort's use of rules make it powerful
  • let's take a look...
  • CentOS's snort has a pre-made config
  • CentOS's snort logs to /var/log/snort
  • service snortd restart
  • By default, ships with no rules. Grab rules from NFS share on instructor machine.
    • NEXT
    PREVIOUS
    Master Index