Re: [Shorewall-users] Shorewall and an inline IDS (snort-inline or hogwash)

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

On Wed, 30 Mar 2005 18:31:40 +0200, you wrote:

>  Hi Mike,
>
>> I've got Snort running now in tandem with Shorewall 2.2, but I'm VERY
>> interested in adding the 'drop packet capability. As I read the docs,
>> since Shorewall is essentially using iptables, it should be doable,
>> but I was hoping to find some more info.  Guess I'll hack around with
>> it tomorrow and see if I let the smoke out.
>
>  Do you have snort inline working with shorewall? We are very
>interested in that solution, could you provide a little howto? :)
>
>  Or you just have Snort AND shorewall but not working together :(
>
>  Regards

The latter.  I see (later in this thread) that Tom has just added the
necessary capability to Shorewall, so I'm very happy I subscribed to
this list!  $DIETY knows how much time I would have wasted fooling
around.

Mike-

--
Mornings:  Evolution in action.  Only the grumpy will survive.
--

Please note - Due to the intense volume of spam, we have installed site-wide spam
 filters at catherders.com.  If email from you bounces, try non-HTML, non-encoded, 
non-attachments.