[Snort-users] Wireless IDS setup experience

William Fitzgerald wfitzgerald at ...9307...
Fri Feb 18 01:11:29 EST 2005

I have just set one up.
Yes it can detect RougueAP, Antistumbler traffic along with auth and
deauth flood attacks.

Grab a copy of snort-2.1.1 then got to snort-wireless.org and grap both
the snort-2.1.1 wirless patch and the snort-2.1.1 database patch.

Below is the list of software I needed:
MySQL: mysql-standard-4.1.9-pc-linux-gnu-i686
Automake: automake-1.6.1 
Snort: snort-2.1.1 
Snort-Wireless patches: Snort-2.1.1-wireless 
Zlib: zlib-1.2.1 [7]	JPEG: jpeg-6b 
Libpng: libpng-1.2.8 
GD: gd-2.0.33 
Apache: httpd-2.0.52
PHP: php-4.3.10
ADODB: adodb460 
ACID: acid-0.9.6b23 
PHPLOT: phplot-5.0rc2 
JPGRAPH: jpgraph-1.17 
BASE: base-1.0.1 
Linux: Debian Linux


Mr.William M. Fitzgerald (MSc,BSc),
Applied Researcher,
Telecommunications Software & Systems Group,
Waterford Institute of Technology,
Cork Rd.
Office Ph: +353 51 302937
Mobile Ph: +353 87 9527083
Web: www.williamfitzgerald.org/

-----Original Message-----
From: snort-users-admin at lists.sourceforge.net
[mailto:snort-users-admin at lists.sourceforge.net] On Behalf Of sam wun
Sent: 18 February 2005 09:05
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] Wireless IDS setup experience


Does anyone have experience in setting up snort as a wireless IDS? I m
wondering whether snort can be used to monitor for rogus AP access. What
can be used as a wireless monitoring console? Is there any documentation
I can read on?


SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
Snort-users mailing list
Snort-users at lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
Snort-users list archive:

More information about the Snort-users mailing list