Linux-Tip.net - The perfect start with Smoothwall Express 3.0

Linux-Tip News

We are proud to present the Linux-Tip Portal in a new design and hope you will find it helpful, whether you are new to Linux or a seasoned user. We will attempt to provide you with effective tips and tricks, or at least to point you in the direction of the help you may need. We would like to offer a great big "Thanks!" for their excellent work to Jommla! and to RocketTheme . Please enjoy Linux news and workshops. Feel free to send your comments and suggestions.

Home

Workshops

Firewall/IDS

The perfect start with Smoothwall Express 3.0

Sunday, 09 September 2007

Article Index
The perfect start with Smoothwall Express 3.0
Smoothwall Post-Install Configuration
Configuring the Intrusion Detection System
Smoothwall Status Log Files and Updates

Page 3 of 4

Step 3: Configuring the Intrusion Detection System

Smoothwall comes with Snort support. Snort is an open source network intrusion prevention system (IPS) capable of performing real-time traffic analysis and packet-logging on IP networks. It can perform protocol analysis, content searching & matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts and more.

In our case, the supported Snort IDS detects potential security attempts from outside our network, but Snort does not prevent these attempts!

To get snort running on your system, you need to register on the Snort website first. After minutes, you will receive an email with further instructions to get the “Oink code”.
Please use this code like the picture shows below:

That’s it. Let’s test if Snort is really doing its job. You can use a port scanner or a penetration test tool like Nessus to check this out. Please check the IDS Log entries after “attacking” your box. You should see similar entries like this:

<< Prev - Next >>

Next >

[ Back ]

My laptop display resolution wasn't configured by default, so I had to edit the xorg.conf file and correctly specify the 1920x1200 resolution at all color depths. Plus, Slackware doesn't come with binary driver support for ATI or nVidia graphics cards but you can easily add them by downloading the latest version and following the install directions for whichever card you have. The Open Addict DELL XPS M170 test laptop comes with a nVidia card, so I grabbed the latest drivers from nvidia.com and installed from that point. No big deal there. [Open Addict]

The information contained in this webpage is provided 'as is' without warranty of any kind.

The entire risk as to the results and the performance of the information is assumed by the user, and in no event shall Linux-Tip be liable for any

consequential, incidental or direct damages suffered in the course of using the information in this articles. Use of the information contained in this

material are governed by their respective license agreements and may contain restrictions on use.

Linux is a registered trademark of Linus Torvalds.
All trademarks here are property of their respective owners.
Articles are owned by their authors. The rest is © 2000-2008, Frank Neugebauer.

Linux-Tip News

Bookmark this article

Main Menu

Virus Info Feed

Alexa Traffic Stats