Re: Questions regarding Snort subscription plans

["Al Lewis (allewi)" <allewi () cisco com>]

Hello,

                You have a loaded question so I will try to point you in the right direction:


“Can you provide some detail about the differences between the subscription plans? I clicked Purchase on the Business 
license, and created an account using this email, but there wasn’t much to view once I logged into the account.”

The product pages explains the difference under each section (Personal, Business and Integrator). I.e.  Paid users get 
access to rules before just regular user subscriptions and the ability to submit false positives/negatives.


https://www.snort.org/products


“The Snort homepage has some steps for getting started, but it’s not very clear as to what the steps are walking you 
through installing (main Snort server/service? Snort monitoring agent? Etc.)

Also, does Snort have the ability to perform any actions when it detects something? Or is it strictly for detection and 
notification?”


The steps are for setting up a sensor most likely. Snort can be an IDS and an IPS when put inline. You may want to 
start with the snort basics to answer these questions fully and in detail.

http://manual-snort-org.s3-website-us-east-1.amazonaws.com/node3.html



Hope this helps

Albert Lewis
QA SNORT/Sourcefire
SOURCEfire, Inc. now part of Cisco
9780 Patuxent Woods Drive
Columbia, MD 21046
Phone: (office) 443.430.7112
Email: allewi () cisco com

From: justin hyland [mailto:jhyland87 () gmail com]
Sent: Thursday, May 26, 2016 12:37 PM
To: snort-users () lists sourceforge net
Subject: [Snort-users] Questions regarding Snort subscription plans

Hello,

I'm looking at Snort as a potential monitoring solution, and had a couple questions regarding the subscription plans.

What I'm primarily looking to monitor is our production environment, which consists of 6 VMs running CentOS 7. I was 
looking at the products page to see which plan would suffice, but there doesn’t seem to be much details listed.

Can you provide some detail about the differences between the subscription plans? I clicked Purchase on the Business 
license, and created an account using this email, but there wasn’t much to view once I logged into the account.

The Snort homepage has some steps for getting started, but it’s not very clear as to what the steps are walking you 
through installing (main Snort server/service? Snort monitoring agent? Etc.)

Also, does Snort have the ability to perform any actions when it detects something? Or is it strictly for detection and 
notification?

Thank you

Justin Hyland


// ---------------------------
Justin Hyland
Linux Engineer/Software Developer/Technology Enthusiast
It is the mark of an educated mind to be able to entertain a thought without accepting it. - Aristotle

M: 602.740.0620
E:  jhyland87 () gmail com<mailto:jhyland87 () gmail com>
W: www.justinhyland.com<http://www.justinhyland.com/>
LI: https://www.linkedin.com/in/justin-hyland-a0b34b10


------------------------------------------------------------------------------
Mobile security can be enabling, not merely restricting. Employees who
bring their own devices (BYOD) to work are irked by the imposition of MDM
restrictions. Mobile Device Manager Plus allows you to control only the
apps on BYO-devices by containerizing them, leaving personal data untouched!
https://ad.doubleclick.net/ddm/clk/304595813;131938128;j

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!