Hello Fellas ;
In this section we’ll talk about Snort installation to protect ,monitorising incoming possible cyber attacks on our PfSense system.
What is Snort ?
Snort is an open source cyber attack detection and protection software.Extensively using on intrusion detection. Snort,performs protocol and anomaly analysis.It has a flexible rule language to let the users create their own rules . Being free and open source let it use to researching by users extensively
In this article on PfSense ;
- Snort package installation
- Snort configurations
- Monitorising ddos intrusion
- Prevent Ddos attack before it happens
In this article we’ll talk about Snort installation so if you want to learn more details about it you can visit https://www.bilgiguvenligi.gov.tr/saldiri-tespit-sistemleri/saldiri-tespit-sistemleri-snort-suricata-bro.html
Afte this little rudiment we can start Snort installation
1-) First System–>Packet , find Snort Package to install
After package installation click on Services–>Snort. You’ll see this section ;
Sing on https://www.snort.org/ to get a oinkcode to update Snort database from the internet.
Click on Global Settings , click on install snort VRT Rules and use your Oinkcode in here
Setting updating time.
After this step click on Update Section and click on Update button to update Snort Rule database with my OinkCOde
Click on Snort interface tab + buttons and bring an interface rule to involve snort protection
In this setcion we’ll choose an interface and click on save
In this section we’ll execute our rule
From this on we’ll monitorise intrusions from Snort Alerts section.