Menu
▾
▴
Re: [Snort-inline-users] simple rc.firewall
|
From: <Wil...@kc...> - 2004-01-23 15:22:15
|
IF you are just trying to do IPS filtering, the only two rules you really
need are two rules in the forward chain.
IPTABLES -A FORWARD -j QUEUE
IPTABLES -A FORWARD -j ACCEPT
Regards,
Will
unor <uno...@ya...>
Sent by: sno...@li...
01/23/2004 09:09 AM
To: sno...@li...
cc:
Subject: [Snort-inline-users] simple rc.firewall
I'm looking for a "simple" version of the infamous
rc.firewall from the honeynet project.
I want to do a bridged inline IPS with with
snort_inline and therefore don't need the outbound
blocking / rate limiting and other various parts of
the existing rc.firewall script. Is there anything
like this out there?
I'm trying to hack up a version of rc.firewall myself
but... If I get it working I'll post it.
Earl
__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free web site building tool. Try it!
http://webhosting.yahoo.com/ps/sb/
-------------------------------------------------------
The SF.Net email is sponsored by EclipseCon 2004
Premiere Conference on Open Tools Development and Integration
See the breadth of Eclipse activity. February 3-5 in Anaheim, CA.
http://www.eclipsecon.org/osdn
_______________________________________________
Snort-inline-users mailing list
Sno...@li...
https://lists.sourceforge.net/lists/listinfo/snort-inline-users
|
