Hi all
I have been tasked with monitoring Snort IDS health and part of the request was to monitor wether traffic is being seen on the interfaces. I have the check_by_ssh enabled to check for critical processes, but am not sure how to approach this. What plugin(s) should I use? I am not familiar with the snmp checks, would this be able to check for recent traffic on a network interface?
Edited ]