Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 813
  • Last Modified:

Snort Alerts

Hi,

Using latest version snort on Debian. When something is logged in /var/log/snort/alerts

Does that mean snort blocked that traffic or its just an alert.

Thanks
0
masdf123
Asked:
masdf123
2 Solutions
 
gheistCommented:
Unless you configured flexresp it is a plain alert.
0
 
prerakgCommented:
It wiil show you all the alerts. All the alerts will include according to the rulebase that you have set. It will have alerts for every traffic that is being checked even for the blocked traffic.

So its just alerts.
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now