Skip to Content
IDS and IPS with Snort 3
book

IDS and IPS with Snort 3

by Ashley Thomas
September 2024
Beginner content levelBeginner
256 pages
6h 24m
English
Packt Publishing
Content preview from IDS and IPS with Snort 3

6

Data Acquisition

The Data Acquisition (DAQ) module, or layer, deals with packet I/O. Its single purpose is to facilitate the delivery and transmission of network packets to and from Snort. Historically, this functionality was tightly coupled within Snort code, and as Snort grew, there was a need to simplify and abstract it out. The DAQ feature was implemented in the Snort 2.9 release.

In this chapter, we’re going to cover the following main topics:

  • The functionality of the DAQ layer
  • The performance of the DAQ layer
  • Packet capture functionality in Snort
  • The Snort 3 implementation of the DAQ layer
  • Configuring DAQ

The functionality of the DAQ layer

The main functionality of the DAQ layer is to facilitate the delivery of network packets from ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Web Penetration Testing with Kali Linux - Third Edition

Web Penetration Testing with Kali Linux - Third Edition

Daniel W. Dieterle, Gilberto Najera-Gutierrez, Juned Ahmed Ansari
Windows Security Monitoring

Windows Security Monitoring

Andrei Miroshnikov

Publisher Resources

ISBN: 9781800566163Supplemental Content