The last part of my guide on setting up Snort and related tools in a home lab / network environment!
Now that Snort is running and analyzing your home network traffic, we need a way to make sense of the alert logs that Snort writes out.
Part 5 - Installing Barnyard2 and MySQL
< Previous: Part 2 - Mirroring Network Traffic
Installing and using PulledPork to keep your Snort rules up to date with updates from the community.
Part 4 - Installing PulledPork
In the third part of this series on setting up a Network IDS, we are finally installing the brain of this setup - Snort!
Setting up port mirroring on your home router, so a copy of the network packet can be forwarded to your Snort host for capture, inspection, processing and so on.
So over the new year holidays, I finally had some time dedicated to setting up my own home security lab.
When deciding what to do first, I saw the ability to monitor my home network traffic was an obvious starting point for a quick win.
Or so I thought :)
Turns out there was a lot more to do than I expected.