ids

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. HELLO_wORLD

    One mirroring solution for IDS (my approach and solution)

    Hello all, As you may know if you read my recent posts in this forum, I was setting up an IDS system (Suricata), outside of the router (that is not strong enough to handle the IDS). So what I needed to do was to send a copy of all the packets/frames I want to monitor to the IDS device. I am...
  2. rgnldo

    Suricata Suricata - IDS on AsusWRT Merlin

    Suricata is a free and open source, mature, fast and robust network threat detection engine. The Suricata engine is capable of real time intrusion detection (IDS), inline intrusion prevention (IPS), network security monitoring (NSM) and offline pcap processing. Suricata inspects the network...
  3. R

    siting an ips/ids/dnsBlock(PfSense? or ClearOs?) in a vpn cascade?

    Current: Inet->wan-AC68u (ipsec passthrough)-lan ->wan-AX11000gt Hello all, Firstly, I wish everyone safe and well during this time of global worry. Please, could you kindly help me out, I think I know what to do, however I don't want to sway advice with my inexperienced opinion. After 8...
  4. B

    IDS Monitoring and Alerts

    New to Merlin here. Last night, first night running, I noticed (surprisingly, but not surprisingly) the following in the IDS logs. Is it possible to receive some sort of alert or daily report or something about this sort of thing? I am particularly interested in IDS and what comes up...
  5. M

    Suricata 4 on Asuswrt-Merlin

    I started playing around with Suricata today, but I'm running into some issues. There's only very little info on the forum and loads of info on the web, which mostly seem too complicated to get started. Hopefully there are more experienced users around to get me started. I'm currently running...
Top