I am setting a passive network monitoring system. By that I mean it will monitor any irregular traffic and any irregular poke on computer TCPIP ports by initially establish a base traffic and ports that are allowed to be accessed. The system should alarm any irregular activities within the network. Is there any software beside SNORT will do the job. I will need daily report as well as incident reports. They should be created automatically. Any idea what is needed to setup such a system.
WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite. Learn more about what this means for you and how you can improve your security with WatchGuard today!