Intrusion Detection Systems mailing list archives
Re: NFR Help
From: mjr () nfr net (Marcus J. Ranum)
Date: Tue, 14 Dec 1999 22:38:25 -0500
My name is Rodolfo Dias, and i am a Brazilian network administrator, last week my boss order me to install NFR ver. 2.0.3 research and put some Intrusion Detection code to monitor DoS attacks that we have been suffering ... I installed it all right, in a 266 PII box w/ 64 Mb
[...] Please don't evaluate NFR's effectiveness by comparing the "research" version against commercial products. The commercial version is a complete intrusion detection appliance, not a toolkit, and includes far more (and better) filters than the "research" version. The kind of problems you appear to be having with setting up the "research" version are unfortunate and are what the commercial product addresses. If you want to test a version of the commercial NFR, fill out http://www.nfr.net/download/eval-request.html and you'll get a copy of the real thing to test. It's a _whole_ lot better, and comes pre-configured. Also, unless the network you are monitoring is quite slow, a P2/266 with 64MB of RAM is not adequate hardware. mjr. -- Marcus J. Ranum, CEO, Network Flight Recorder, Inc. work - http://www.nfr.net home - http://www.clark.net/pub/mjr
Current thread:
- Jeff Johnson's CMM security model -- any pointers? Gene Kim (Dec 10)
- Re: Jeff Johnson's CMM security model -- any pointers? Jackie Chan (Dec 10)
- NFR Help Rodolfo Dias (Dec 14)
- Re: NFR Help Delores A. Quade (Dec 14)
- Re: NFR Help Marcus J. Ranum (Dec 14)
- Re: NFR Help Greg Shipley (Dec 14)
- Re: NFR Help Carric Dooley (Dec 15)
- NEW TO IDS kbashir () engro com (Dec 15)
- Web Trends Sec Analyzer Duke Imaizumi (Dec 16)
- RE: NEW TO IDS Bill Royds (Dec 16)
- ISS's RealSecure on UNIX Richters, Eriks (Dec 16)
- Bookmark URL's that contain authentication arguements ICoS (Dec 19)
- Jeff Johnson's CAMM work Gene Kim (Dec 20)
- If Tripwire could detect ........... Duke Imaizumi (Dec 23)
- SATAN Bram Shirani (Dec 23)