There's not that much performance hit letting snort log to db on its own... Unless you're alerting on every packet. On a side note... When upgrading FreeBSD, make sure you enable device polling for network devices, and verify that the drivers for your device make use of that polling. You'll get massive gains in performance this way.