Snort is the de-facto IDS/IPS. This article describes the process of installation and configuration (including the inline capabilities) and presents tests run against Snort (in the shape of compartive tests with Suricata). At the end, some usage examples are discussed.
Many thanks to Jason Drury (Aldeid Community) for his help.
Table of content