Welcome, Guest. Please login or register.
Did you miss your activation email?
Tuesday 19 November 2024, 05:50:59 pm

Login with username, password and session length

Visit the official Endian Community Mailinglist  HERE
14258 Posts in 4377 Topics by 6515 Members
Latest Member: hulteends
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  IDS
0 Members and 2 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: IDS  (Read 8477 times)
Ignacio
Jr. Member
*
Offline Offline

Posts: 1


IDS
« on: Sunday 07 March 2010, 11:05:58 am »

I have an Endian Firewall Community release 2.2
How can I check if it is working well intrusion detection?
Days ago I do not see messages in Registration - Services - IDS
Logged
whoiam55
Full Member
***
Offline Offline

Posts: 71



WWW
« Reply #1 on: Monday 08 March 2010, 05:01:26 pm »

I don't know who to test IDS exactly, but one thing you can do it, run a torrent client in your network.

If IDS is working Endian should report something like this in it's log(IDS)
Code:
 snort[4389]: [1:2000334:9] ET P2P BitTorrent peer sync [Classification: Potential Corporate Privacy Violation] [Priority: 1]: {TCP} 5.5.5.5:51439 -> 5.5.5.5:17445

ps: The IP in this example are change just to save my a$$.
Logged

सत्यमेव जयते!
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.063 seconds with 18 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com