Network Monitoring & IPS
Johnny Makris Assignment 11:
Anomaly-based Detection with Statistical Data
1.)
The error answer seems to have happened following the execution of the 'netstat -vnatpl' command, suggesting a possible problem with port binding or network connectivity. You can look for any processes using the necessary ports or look into firewall setups that might be obstructing the connection in order to further diagnose the issue. Furthermore, looking through system logs or using diagnostic programs like "tcpdump" may shed light on any network-related problems.
2.)
The command, sudo systemctl status yaf.service was executed successfully, indicating that the YAF service is running as expected, which suggests that the issue might lie elsewhere in the network configuration or application setup.
3.)
Sudo systemctl status rwflowpack.service command successful
