Snort

Snort is an intrusion prevention system and network monitoring / alert daemon.

Configuration
Gentoo requires snort users to define the interface being monitored in

Snort ships with an example config that must be moved & edited.

OpenRC
To start snort at boot:

To start snort immediately:

External Resources

 * https://wiki.archlinux.org/index.php/Snort
 * http://oinkmaster.sourceforge.net/