[83799] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: A useful oversimplification for network surveillance?

daemon@ATHENA.MIT.EDU (Florian Weimer)
Thu Aug 25 13:21:23 2005

From: Florian Weimer <fw@deneb.enyo.de>
To: sjk <sjk@cupacoffee.net>
Cc: "Fergie (Paul Ferguson)" <fergdawg@netzero.net>,
	hcb@gettcomm.com, nanog@merit.edu
Date: Thu, 25 Aug 2005 19:20:30 +0200
In-Reply-To: <Pine.LNX.4.63.0508251215190.1446@godot> (sjk@cupacoffee.net's
	message of "Thu, 25 Aug 2005 12:16:41 -0500 (CDT)")
Errors-To: owner-nanog@merit.edu


> We are an ISP - we look for specific trending data to help pinpoint new 
> potential virus and malware which can adversley effect transit links or 
> equiptment.

Plain IDS data, or netflow data? (I don't doubt the usefulness of flow
data.)


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[83799] in North American Network Operators' Group

Re: A useful oversimplification for network surveillance?

daemon@ATHENA.MIT.EDU (Florian Weimer)Thu Aug 25 13:21:23 2005

daemon@ATHENA.MIT.EDU (Florian Weimer)
Thu Aug 25 13:21:23 2005