[Snort-inline-users] System hanging while using snort_inline

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

I am not a guru or anything and I'm not sure if this
will help, but here's my list of iptables modules and
my iptables config that I used initially to get up and
running.  Once I got a very *simple* working model, I
then went in and tweaked my iptables rules and made
them stronger.  I'm running on Debian 'woody' w/
2.4.20 kernel, and what really got me over the hump
was carefully reading the (very helpful!) book "Snort
2.0 Intrusion Detection" at
http://www.snort.org/docs/#snort_books.

Module                  Size  Used by    Not tainted
ipt_multiport            640   0 (autoclean)
ipt_limit                960   3 (autoclean)
bridge                 19140   1 (autoclean)
ip_conntrack_irc        3040   0 (unused)
ip_conntrack_ftp        3776   0 (unused)
ip_queue                5004   0
ipt_LOG                 3296   0 (unused)
iptable_mangle          2208   0 (autoclean) (unused)
iptable_nat            14324   0 (autoclean) (unused)
ip_conntrack           16812   3 (autoclean)
[ip_conntrack_irc ip_conntrack_ftp iptable_nat]
iptable_filter          1728   1 (autoclean)
ip_tables              10688   8 [ipt_multiport
ipt_limit ipt_LOG iptable_mangle iptable_nat
iptable_filter]
ext3                   56704   5 (autoclean)
jbd                    35976   5 (autoclean) [ext3]
8139too                16160   3
mii

### Support for connection tracking of FTP and IRC.
modprobe ip_conntrack_ftp
modprobe ip_conntrack_irc

### Enable ip_forward
echo "1" > /proc/sys/net/ipv4/ip_forward

iptables -A FORWARD -j QUEUE

iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -o lo -j ACCEPT

__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free web site building tool. Try it!
http://webhosting.yahoo.com/ps/sb/