简体繁体中英

Snort or Suricata whilst using Docker?

原文 2017-05-21 13:02:39 9 1 security/ containers/ microservices/ snort/ suricata

Guess I am going to use multiple docker files for my IDS/IPS - using microservice. Say more than 50 docker containers for it. Would you use Suricata or Snort ? Is it really important that Snort is not multithread , and does it snort weaker than Suricata??

1 answers

Use Docker from dtag-dev-sev

https://github.com/dtag-dev-sec/suricata

dockerized suricata

suricata is a Network IDS, IPS and Network Security Monitoring engine.

This repository contains the necessary files to create a dockerized version of suricata.

using Snort IDS with Webcrawler

Detecting SSH Version Scan using Snort

Suricata does not work inline mode

Snort+Barnyard with Graylog

Snort TCP flags

Snort rule for ESP packets

Error while compiling suricata on amazon linux

Snort rule to detect http flood

Snort pcap_inject not located

Suricata HOME_NET config question (SPAN port)

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question using Snort IDS with Webcrawler Detecting SSH Version Scan using Snort Suricata does not work inline mode Snort+Barnyard with Graylog Snort TCP flags Snort rule for ESP packets Error while compiling suricata on amazon linux Snort rule to detect http flood Snort pcap_inject not located Suricata HOME_NET config question (SPAN port)

Related Tags

Snort or Suricata whilst using Docker?

Question

1 answers

solution1 0 2017-07-13 05:39:25

solution1
0 2017-07-13 05:39:25