THE BASIC MODES OF THE INTRUSION PREVENTION SYSTEM (IDS/IPS SURICATA) FOR THE COMPUTING CLUSTER
Journal Title: Современные информационные технологии и ИТ-образование - Year 2017, Vol 13, Issue 3
Abstract
This article aims to test the Suricata intrusion prevention system and consider its use as a primary or additional tool for securing the computing cluster. For solve this task, we tested the operation of this system in the IDS and IPS modes. To evaluate the performance of the system under test, the CPU utilization and CPU load average counters were used. The data was obtained through the system of monitoring the data center of the Institute of Physics of the National Academy of Sciences of Azerbaijan on the basis of the ZABBIX platform. In this article, describes the installation of Suricata and the configuration of its main parameters and the possibility of optimizing the operating modes of Suricata is shown depending on the hardware resources, for example, the number of cores. The cloud segment of the data center of the Institute of Physics of the National Academy of Sciences of Azerbaijan was used as a testing ground, which in its turn is a part of the JINR LIT's cloud infrastructure. The results demonstrate the ability of Suricata detecting threats and responding to them in a timely manner, which significantly increases the level of security. In addition, this article shows the capabilities of the cloud segment and the monitoring system of the data center of the Institute of Physics of NAS of Azerbaijan, with the help of which testing was conducted.
Authors and Affiliations
Aleksey Bondyakov
Keywords
Related Articles
- EP ID EP266410
- DOI 10.25559/SITITO.2017.3.629
- Views 120
- Downloads 0
PSYCHOLOGICAL PREDICTORS COMPLEX CHARACTERIZING HUMAN BEHAVIOR ONLINE DEFINITION, ANALYSIS, DESCRIPTION, USE
Current political situation in the world needs elaboration of approaches to ensuring a psychologically safe behavior of users in the information space. That is why significant problem is to analyze the complex of socio-p...
ON WORLD MARKET OF AUTONOMOUS (DRIVERLESS) CARS
This article is devoted to the review of the world market of unmanned vehicles. It is noted that the global automotive market is now showing two key trends. This is electric mobility (replacement of batteries in electric...
THE TECHNOLOGIES FOR ANALYSIS AND VISUALIZATION OF THE MULTIDIMENSIONAL PEDAGOGICAL MONITORING DATA IN HIGHER EDUCATION
The relevance of such a problem as creating the technologies for the analysis and visualization of multidimensional pedagogical monitoring data is determined by the need to adapt higher education to the conditions of dig...
MODELING OF THE PROCESS OF PREPARING FUTURE TEACHERS OF INFORMATICS TO RESOURCE-SAVING ACTIVITIES BASED ON EUROPEAN EXPERIENCE
The article describes the model for the preparation of future teachers of informatics for resource-saving activities, the stages of modeling are considered. The developed model, which is a structural interconnection of t...
THE USE OF KALMAN FILTER IN MOVING OBJECT CONTROL
The problems arising in object control based on signals from several sensors in the course of difference in noise characteristics in their readings and missing of priori information on noise intensity of investigated pro...