Hi, I added to snort.conf (version 2.0.0) line: include $RULE_PATH/backdoor.rules and I started Snort: snort -A full -l /home/test/log -h my_home_network/32 -c /etc/snort.conf All worked fine, but Snort didn't log any of backdoors. This is strange because he logged others attacks. To test Snort I used Nessus. What did I wrong? -- Wojciech M.