Menu
▾
▴
[Snort-inline-users] Snort-inline 2.3 where have I gone wrong?
|
From: Bill W. <bw...@op...> - 2005-02-23 20:53:23
|
Here is what I have. Please tell me what I have done wrong. I am not dropping anything. Any ideas? Bill Kernel 2.6.10 Added: Userspace queueing via NETLINK Added: Bridged IP/ARP packets filtering Downloaded and installed Snort-inline 2.3 Ran: ./configure --with-libipq-includes=/usr/include/libipq --enable-inline --enable-clamav *iptables -L * Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination * iptables -A FORWARD -j QUEUE* Came back with nothing * insmod ip_queue* ip_queue 11480 0 * snort_inline -QDc /etc/snort_inline/snort_inline.conf -Q -l /var/log/snort* Reading from iptables Initializing Inline mode Last line of the syslog: Feb 23 15:48:30 wilbur snort_inline: Snort initialization completed successfully (pid=4615) *lsmod* Module Size Used by ip_conntrack_irc 71728 0 ip_conntrack_ftp 72688 0 ipt_LOG 6944 0 bridge 52056 0 iptable_mangle 2720 0 iptable_nat 26984 0 ip_conntrack 47156 3 ip_conntrack_irc,ip_conntrack_ftp,iptable_nat iptable_filter 3584 1 ip_tables 19104 4 ipt_LOG,iptable_mangle,iptable_nat,iptable_filter ipv6 265888 14 af_packet 22472 2 eepro100 30220 0 snd_intel8x0 33216 0 snd_ac97_codec 77056 1 snd_intel8x0 snd_pcm 98248 2 snd_intel8x0,snd_ac97_codec snd_timer 25796 1 snd_pcm snd 56868 4 snd_intel8x0,snd_ac97_codec,snd_pcm,snd_timer snd_page_alloc 9924 2 snd_intel8x0,snd_pcm i2c_i801 8460 0 i2c_core 22736 1 i2c_i801 hw_random 5364 0 pci_hotplug 34448 0 intel_mch_agp 10480 0 intel_agp 22556 1 agpgart 34568 2 intel_mch_agp,intel_agp parport_pc 37956 0 parport 37768 1 parport_pc mousedev 11576 0 tsdev 7648 0 psmouse 21960 0 floppy 60912 0 pcspkr 3464 0 evdev 9504 0 ehci_hcd 33604 0 uhci_hcd 33968 0 usbcore 122520 3 ehci_hcd,uhci_hcd i810_audio 37844 0 ac97_codec 18796 1 i810_audio soundcore 10176 2 snd,i810_audio ata_piix 9092 0 libata 47012 1 ata_piix scsi_mod 130048 1 libata e1000 88628 0 e100 34944 0 mii 4928 2 eepro100,e100 ip_queue 11480 0 ide_cd 42724 0 cdrom 41436 1 ide_cd rtc 12664 0 isofs 36952 0 reiserfs 248528 6 ext3 140168 1 jbd 61976 1 ext3 ide_generic 1056 0 [permanent] siimage 12512 0 [permanent] aec62xx 7264 0 [permanent] trm290 4196 0 [permanent] alim15x3 10572 0 [permanent] hpt34x 5152 0 [permanent] hpt366 20128 0 [permanent] ide_disk 21024 10 hpt366 cmd64x 11964 0 [permanent] piix 10116 0 [permanent] rz1000 2432 0 [permanent] slc90e66 5568 0 [permanent] generic 3904 0 [permanent] cs5530 4608 0 [permanent] cs5520 4576 0 [permanent] sc1200 7136 0 [permanent] triflex 3584 0 [permanent] atiixp 5968 0 [permanent] pdc202xx_old 11200 0 [permanent] pdc202xx_new 8928 0 [permanent] opti621 4452 0 [permanent] ns87415 3656 0 [permanent] cy82c693 4416 0 [permanent] amd74xx 12956 0 [permanent] sis5513 14472 0 [permanent] via82cxxx 12220 0 [permanent] serverworks 7592 0 [permanent] ide_core 130512 28 ide_cd,ide_generic,siimage,aec62xx,trm290,alim15x3,hpt34x,hpt366,ide_disk,cmd64x,piix,rz1000,slc90e66,generic,cs5530,cs5520,sc1200,triflex,atiixp,pdc202xx_old,pdc202xx_new,opti621,ns87415,cy82c693,amd74xx,sis5513,via82cxxx,serverworks unix 28820 14 -- ********************************** Bill Warren Optivel, Inc. E-mail: bw...@op... Voice: 317.275.2305 Fax: 317.275.2301 Web: http://www.optivel.com ********************************** |
