Complete session captures
Hi All,In an attempt to displace a SNORT environment, with a PAN implementation for monitoring ( at this stage only ),we need to be able to replicate complete session captures for forensic's ( internal security, police etc ).Although its possible to capture packets for false positive reasons, how would I go about storing ( most likly off the app...




