[Snort-users] Snort vs. Barnyard2 performance logging to a database

Dubrawsky, Ido Ido.Dubrawsky at ...16687...
Tue Feb 11 05:38:07 EST 2014


Has anyone done any performance tests benchmarking whether its better for the Snort IDS process to insert alerts directly into a database (MySQL or PostGREsql) or whether performance is better if Snort writes the unified2 file and lets Barnyard2 insert alerts into a database?   A quick Google search hasnt easily revealed anything relevant at the moment.

 

Thanks,

Ido

Description: cid:image008.png at ...16688...

 

Description: Description: http://marketing.itron.com/campaign/ribbon_logo_rgb_92h.jpg <https://www.itron.com/> 

Ido Dubrawsky

Sr. Principal Systems Engineer

Security Engineering Team Lead

Ido.Dubrawsky at ...16687... <mailto:Ido.Dubrawsky at ...16687...> 

509-891-3452 (O)/301-928-0020(M)

Description: Description: http://marketing.itron.com/campaign/social_media_icon_twitter29.jpg <http://twitter.com/#!/itron>   Description: Description: http://marketing.itron.com/campaign/social_media_icon_facebook29.jpg <http://www.facebook.com/ItronInc>   Description: Description: http://marketing.itron.com/campaign/social_media_icon_linkedin29.jpg <http://www.linkedin.com/company/7550?trk=null>   Description: Description: http://marketing.itron.com/campaign/social_media_icon_youtube29.jpg <http://www.youtube.com/itronsmartmedia>  

P Please consider the impact to the environment and your responsibility before printing this e-mail.

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/05f46416/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 124 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/05f46416/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.jpg
Type: image/jpeg
Size: 4585 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/05f46416/attachment.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image003.jpg
Type: image/jpeg
Size: 1675 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/05f46416/attachment-0001.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image004.jpg
Type: image/jpeg
Size: 1586 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/05f46416/attachment-0002.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image005.jpg
Type: image/jpeg
Size: 1696 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/05f46416/attachment-0003.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image006.jpg
Type: image/jpeg
Size: 1656 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/05f46416/attachment-0004.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 476 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/05f46416/attachment.sig>


More information about the Snort-users mailing list