Методические материалы Лохтурова Вячеслава

User Tools

Site Tools

Trace:
анализ_трафика

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
анализ_трафика [2011/09/22 10:26]
val 		анализ_трафика [2013/10/07 13:43] (current)
val [Cisco Switch]
Line 4: Line 4:
  
 ==== Cisco Switch ==== ==== Cisco Switch ====
-<​code>​ 
-monitor session 1 source interface f0/0 both 
-monitor session 1 destination interface f0/15 
-</​code>​ 
  
 +  * Настройка [[Оборудование уровня 2 Cisco Catalyst#​SPAN]] на switch
 ==== Unix ==== ==== Unix ====
 <​code>​ <​code>​
Line 22: Line 19:
 [[http://​www.circlemud.org/​~jelson/​software/​tcpflow/​]] [[http://​www.circlemud.org/​~jelson/​software/​tcpflow/​]]
  
-===== Анализ трафика для ​предотвращения атак - пакет Snort =====+===== Анализ трафика для детектирования атак - пакет Snort =====
  
 [[Сервис SNORT]] [[Сервис SNORT]]
  
-<​code>​ +===== Анализ трафика для ​предотвращения атак - пакет Snortsam ​=====
-[server:~] # /​usr/​local/​etc/​rc.d/​snort stop +
-[server:~] # pkg_delete -x snort +
-[server:~] # rm -r /​usr/​local/​etc/​snort/​ +
- +
-root@server:​~#​ /​etc/​init.d/​snort stop +
-root@server:​~#​ apt-get purge snort +
-</​code>​ +
- +
-===== Использование пакета Snortsam ​для ​блокировки хостов =====+
  
 [[Сервис SNORTSAM]] [[Сервис SNORTSAM]]
- 
  
  
анализ_трафика.1316672776.txt.gz · Last modified: 2013/05/22 13:50 (external edit)

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Run on Debian Driven by DokuWiki