Context Navigation

HandlingIntrusionwithRyu-portscanning

-                      v8
+                      v9
 When Snort detects intrusion traffic, it will save the alert messages into the file '' /var/log/snort/alert''. The RINA distributed application keeps reading this alert file, and pass any intrusion information to the Ryu controller which will block the intrusion traffic.
 ''' Note: If you want to re-run this experiment, make sure to remove /tmp/attacker.txt and /tmp/snortalert files on the controller node. '''
+''' Note: If you want to re-run this experiment, make sure to remove ''/tmp/attacker.txt'' and ''/tmp/snortalert'' files on the controller node. '''
 == (5) Run Attack Analyzer ==
 Attack Analyzer reads the snort alerts saved on Controller node and makes decisions about which IP addresses to block. Attack analyzer is the “brain” on the attack control system. It reads the file '' /tmp/snortalerts '', which is generated by RINA on controller node and outputs /tmp/attacker.txt file which has IP address of all the nodes that Attack Analyzer decides to block based on snort alerts.
+Attack Analyzer reads the snort alerts saved on Controller node and makes decisions about which IP addresses to block. Attack analyzer is the “brain” on the attack control system. It reads the file ''/tmp/snortalerts'', which is generated by RINA on controller node and outputs ''/tmp/attacker.txt'' file which has IP address of all the nodes that Attack Analyzer decides to block based on snort alerts.