Menu
▾
▴
Re: [Snort-inline-users] snort-inline connection timeout
|
From: Will M. <wil...@gm...> - 2004-12-29 16:43:23
|
iptables rules...... iptables -t mangle -A FORWARD -p tcp --syn -m state --state NEW -j MARK --set-mark 1 iptables -t mangle -A FORWARD -p tcp -m state --state RELATED,ESTABLISHED -j MARK --set-mark 2 iptables -I FORWARD -m mark --mark 1 -j QUEUE iptables -I FORWARD -m mark --mark 2 -j QUEUE tell stream4 about state tracking via snort.conf iptablesnewmark defaults to 1, iptablesestmark defaults to 2........... preprocessor stream4: disable_evasion_alerts, iptablesnewmark, iptablesestmark, forceiptstate Regards, Will On Wed, 29 Dec 2004 13:56:40 +0700 (ICT), tha...@gb... <tha...@gb...> wrote: > i've a problem about connection time out. > i'm using snort-inline 2.2.0a with clamav support > it's perfect for me and i really like it. > but i've notice that it make my connection time out's value to short. > > i can ssh out of my network only a few minute and it freeze then i've to > make a new connection. hmm it's also irc too. > > do any one have the same problem ? > where should i have to fix or tuning the value ?? > > regards, > Thanasin Jitkaew > > ------------------------------------------------------- > SF email is sponsored by - The IT Product Guide > Read honest & candid reviews on hundreds of IT Products from real users. > Discover which products truly live up to the hype. Start reading now. > http://productguide.itmanagersjournal.com/ > _______________________________________________ > Snort-inline-users mailing list > Sno...@li... > https://lists.sourceforge.net/lists/listinfo/snort-inline-users > |
