The Monitoring Segment

Deploying a separate monitoring segment for an IDS is the generally accepted means of inserting an intrusion monitoring presence into network infrastructure. It is vital even for small deployments, such as Snort and all of its related applications installed on a single desktop computer. Taking the time and energy to install a separate monitoring segment enhances Snort's security and performance. A monitoring segment does not necessarily have to include expensive rewiring and additional network equipment. You can build an inexpensive and relatively secure segment with readily available equipment from your local computer shop.

The thorny part of installing a monitoring segment is the interface between it and the network to ...

Get Intrusion Detection with Snort now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.