Honeypotting·Chapter5 121 with two or more network interfaces for bridging the traffic between network segments. As described in "Know Your Enemy: Honeynets" (The Honeynet Project, May 2006), the main of aim of these honey walls was to provide the following: Data control Data capture Data analysis Data collection Gen II GenII honeynets were defined by utilizing a CDROM for installation to overcome the difficulties in building consistent, secure layer 2 bridges that contained an effective range of monitoring tools. The honey wall CDROM was created by the Honeynet Project and was a complete prebuild bootable honey wall environment. It was capable of controlling both the rate and type of data flowing through a bridge by using both iptables and snort inline. Snort inline dynamically changes the content of packets as