Menu
▾
▴
Re: [Snort-inline-users] Non-Bridged Firewall
|
From: Nick R. <ni...@ro...> - 2004-11-21 03:02:09
|
On Fri, 19 Nov 2004, Chris Dos wrote: > Finding snort-inline was like a dream come true. Well, the dream lasted > until I bought the Snort 2.1 book and saw some remarks that it's only > for bridges. I have several non-bridged firewalls that I would like to > use Snort-Inline on. Can version 2.2a work on non-bridged firewalls? I'm not sure the context is correct here. I think what is meant is that snort-inline is meant for inline firewalls, meaning all monitored traffic must traverse the snort-inline firewall. Snort by itself, doesn't have to be inline to capture packets. Meaning traffic doesn't have to traverse the machine running snort in order to alert on it, it only has to be present on a network. I haven't read the 2.1 book so I couldn't really tell you what the real meaning is. Nick Rogness <ni...@ro...> - How many people here have telekenetic powers? Raise my hand. -Emo Philips |
