[Snort-users] Basic snort setup for traffic analysis

Erek Adams erek at ...577...
Mon Sep 30 07:16:03 EDT 2002


On Mon, 30 Sep 2002, Nanabhay Mohamed    * Group  (GP) wrote:

> I want to run snort on a network for about 5 days and then use snortsnarf
> (or anything else someone can recommend) to analyse what sort of traffic is
> going through the network.

[...snip...]

You're using the wrong tool.  :)

Use Ntop[0] or iptraf[1].  They should show you exactly what's going on.

Cheers!

-----
Erek Adams
Nifty-Type-Guy
TheAdamsFamily.Net


[0]	http://freshmeat.net/projects/ntop/?topic_id=152
[1]	http://freshmeat.net/projects/iptraf/?topic_id=152





More information about the Snort-users mailing list