[Snort-users] decouple the composing services

Alì Nejabati a.nejabati at nextworks.it
Thu Jun 20 10:35:37 EDT 2019


Hi All,

Is there any option for SNORT to decouple the composing services? e.g.
split rule engine (NIDS/NIPS) from rule database (NSM) and from GUI and run
them in different VMs/Containers ?

Are there logs or interfaces (REST?) accessible to eval signature matches,
generating alerts and IPS actions? something like this https://logz.io/blog/
network-security-monitoring/

Best Regards,
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20190620/e4a8ba78/attachment.html>


More information about the Snort-users mailing list