These questions are from J&B's lab "Securing the Network with an Intrusion Detection System (IDS)

Subject:Computer SciencePrice: Bought3

Share With

These questions are from J&B's lab "Securing the Network with an Intrusion Detection System (IDS).

1) I need to figure out what the Snort Rule is to capture ICMP traffic from a host (ex. 172.30.0.2).

2) Research the command that will log active packets to a file called packetcapture.log. Execute the command in the virtual environment for 30 seconds and then make a screen capture showing the results. Everything that I find online does not seem to apply to this lab as I keep getting command not found and dir failed: No such file or directory.

3) Find a snort script that will interact with Cisco devices by writing ACL rules to Cisco routers, PIX, ASA and IPTABLES firewalls. Cite the reference and explain the reasoning behind the script choice.