Rodolfo J. Paiz wrote:
My network is never down, my log server never crashes. And if it does? Reboot. And if the firewall is hung, dead, and killed? Reinstall. This is, after all, my home firewall where the critical config files are backed up. No big deal.
If you don't have reliable logs, how does the IDS that goes with your firewall work? You do have a good IDS in place don't you?
I do have reliable logs... at the moment, both on the local machine and the remote syslog server. I don't understand the question.
Also, at this point I am trying to learn how to set up a good IDS but no... at this moment there is no IDS to speak of in place.
-- Rodolfo J. Paiz rpaiz@xxxxxxxxxxxxxx
-- Shrike-list mailing list Shrike-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/shrike-list
