Snort 中文手册
Snort用户手册第一章snort简介snort有三种工作模式:嗅探器、数据包记录器、网络侵/入检测系统。嗅探器模式仅仅是从网络上读取数据包并作为接二连三的流显示在终端上。数据包记录器模式把数据包记录到硬盘上。网路侵/入检测模式是最杂乱的,并且是可配置的。我们可以让snort分析网络数据流以匹配用户定义的一些规则,并依据检测成果采纳必定的动作。嗅探器所谓的嗅探器模式即是snort从网络上读出数据包然后显示在你的控制台上。首要,我们从最基本的用法入手。假如你只要把TCP/IP信息打印在屏幕上,只需要输入下面的命令:Snort中文手册.htm
.....
(Snort User Manual Chapter 1 Snort Introduction Snort has three working modes: sniffer, packet recorder, network intrusion/intrusion detection system. Sniffer mode simply reads packets from the network and displays them on the terminal as a continuous stream. Packet recorder mode records packets to hard disk. The network intrusion/intrusion detection mode is the most complex and configurable. We can let snort analyze the network data flow to match some rules defined by the user, and take certain actions according to the detection results. Sniffer The so-called sniffer mode is where snort reads packets from the network and displays them on your console. First, let's start with the most basic usage. If you just want to print TCP/IP information on the screen, just type the following command:
Snort Chinese Manual.htm
.....)
页:
[1]