Snort Cheatsheet
download install snort on linux,
configure demon,
edit /etc/sysconfig/snort
set INTERFACES to interface that can scan entire subnet,
edit /etc/snort/snort.conf
configure HOME_NET to the subnet you want to scan (if sniffer's IP is 192.168.10.30, HOME_NET is 192.168.10.0)