THE BASIC MODES OF THE INTRUSION PREVENTION SYSTEM (IDS/IPS SURICATA) FOR THE COMPUTING CLUSTER
Journal Title: Современные информационные технологии и ИТ-образование - Year 2017, Vol 13, Issue 3
Abstract
This article aims to test the Suricata intrusion prevention system and consider its use as a primary or additional tool for securing the computing cluster. For solve this task, we tested the operation of this system in the IDS and IPS modes. To evaluate the performance of the system under test, the CPU utilization and CPU load average counters were used. The data was obtained through the system of monitoring the data center of the Institute of Physics of the National Academy of Sciences of Azerbaijan on the basis of the ZABBIX platform. In this article, describes the installation of Suricata and the configuration of its main parameters and the possibility of optimizing the operating modes of Suricata is shown depending on the hardware resources, for example, the number of cores. The cloud segment of the data center of the Institute of Physics of the National Academy of Sciences of Azerbaijan was used as a testing ground, which in its turn is a part of the JINR LIT's cloud infrastructure. The results demonstrate the ability of Suricata detecting threats and responding to them in a timely manner, which significantly increases the level of security. In addition, this article shows the capabilities of the cloud segment and the monitoring system of the data center of the Institute of Physics of NAS of Azerbaijan, with the help of which testing was conducted.
Authors and Affiliations
Aleksey Bondyakov
Keywords
Related Articles
- EP ID EP266410
- DOI 10.25559/SITITO.2017.3.629
- Views 129
- Downloads 0
INTERNET TECHNOLOGIES FOR TRAFFIC AND PEDESTRIAN DATA COLLECTION
The article shows the technology of obtaining initial data on the state and functioning of the city transport system. The technology makes it possible to obtain data on the intensity of any movement: intensity of traffic...
PLAYING WITH A CHAIN OR PHYSICAL AND MATHEMATICAL INFORMATICS
The article describes an educational laboratory work within the framework of interdisciplinary connections at the intersection of informatics, mathematics and physics: the study of the sagging of a closed chain with diff...
IT-TECHNOLOGIES IN THE PROBLEMS OF IMPROVING EFFICIENCY WITH THE ASSOCIATED START AND SEPARATION OF THE MICRO SATELLITE ON-BOARD SPACE APPARATUS
Recently, the study of the near and far space with the help of small spacecraft has become more important. In this regard, we can definitely talk about the whole industry of small space technology, the problems of its cr...
SFIA - THE SYSTEM OF IT PROFESSIONAL STANDARDS FOR THE DIGITAL ECONOMY
SFIA is a system of professional IT standards, it’s first version was developed at the beginning of this century in the UK for the information age, and the current sixth version meets the requirements of the digital econ...
ALGORITHMS FOR THE ROBUST PROPERTIES ANALYSIS OF A MULTI-PURPOSE CONTROL LAWS OF MOVING OBJECTS
The problems of analyzing robust properties for control systems of moving objects are of significant importance in modern control theory. This is because the mathematical models used in the synthesis of control laws are...