Improving Snort performance with Barnyard
Posted by Ryan Berens   
Secure my network Do you use Snort? Do you want to get more out of it than you already are? Have no fear, James Turnbull will take you through the process of kicking you Intrusion Detection system up a notch. Check it out:

Barnyard improves Snort's speed and efficiency processing outputted data off-loaded by Snort. Barnyard leaves Snort more capacity to perform its key function: scanning and analyzing traffic for anomalies and attacks. We will set Snort to output its alerts and logs to the unified (binary) format, which isn't as processor-intensive as other kinds of output, and then make use of Barnyard to process the resulting output into our required format(s). This tip presumes you already have Snort installed and configured.

Read this full article

Only registered users can write comments.
Please login or register.

Powered by AkoComment!