[Snort-users] New guy.

Mike nugget at ...8809...
Mon Apr 7 10:48:02 EDT 2003


Hi guys,

Just signed up for this ML. Don't know about any rules or guide lines so
bear with me. Anyways, I'm pretty new to both Linux and Snort (keeping an
eye on HoneyD as well) and I guess my first question is kinda stupid:

If I would like to monitor the activity on a network with all computers on
the same subnet (the gateway is a firewall to the Internet). How would I set
up Snort? On what computer can I run it to be able to listen to all traffic?

I set up a test Snort but it would only see the traffic to the machine on
which I ran it.

Any ideas?

Regards,
Mike


--
"I had a linguistics professor who said that it's man's ability to use
language that makes him the dominant species on the planet. That may be. But
I think there's one other thing that separates us from animals -- We aren't
afraid of vacuum cleaners"





More information about the Snort-users mailing list