[Snort-users] Looking for recommendations for distributed Snort GiGE Sensors (network architecture described in message)
Jason.Haar at ...294...
Thu Dec 11 15:40:01 EST 2003
On Thu, 2003-12-11 at 19:31, Val P wrote:
> We are monitoring a gigabit line using a Proliant DL-380G2 server (1.4 GHz
> processor and E1000 SX-fiber NICs (forget which model, but Intel branded))
> Have not seen any dropped packets even during peak times (which admitedly,
> do not max out our gigabit line, they may spike to 30%-40% on rare
> occasions, but is usually around 10%). The server has 1GB of ram, and is
> logging to a SQL Server 2000. Running on FreeBSD 4.8. The average load (not
> during peak times) is about 0.75 - 1.25. Single processor configuration.
Can you say how you log from a FreeBSD box to a Microsoft SQL 2000
server? What API is available for that?
Information Security Manager, Trimble Navigation Ltd.
Phone: +64 3 9635 377 Fax: +64 3 9635 417
PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1
More information about the Snort-users