[Snort-inline-users] Bridging snort question

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Hello Sir ,
I have a bridging Snort ( inline mode ) that have 4 Ethernet cards , 
I configured my snort box with :
brctl addbr br0
brctl addif eth0
brctl addif eth1 
ifconfig eth0 0.0.0.0 up
ifconfig eth1 0.0.0.0 up
ifconfig br0 0.0.0.0 up
iptables -A FORWARD -j QUEUE , and aslo : insmode ip_queue and : started snort_inline with 
snort_inline -Qvi br0 -c etc/snort_inline.conf ,
I connected eth0 to my MS-server ( 172.16.1.X/29, Defaulyt GW: 172.16.1.1 ) and also 
  connected eth1 to my cisco layer 3 switch , to the FastEthernet port configured for Vlan 10
# interface vlan 10
  ip address 172.16.1.1/29
and it worked fine ,
then I tryed to define another bridge interface in my linux box with :
brctl addbr br1
brctl addif eth2
brctl addif eth3 
ifconfig eth2 0.0.0.0 up
ifconfig eth3 0.0.0.0 up
ifconfig br1 0.0.0.0 up
and conneted eth2 to another MS-server with : ( 192.168.1.X/24, Defaly GW : 192.168.1.1 ) 
  and then connected eth3 to my layer3 cisco switch , to the FastEthernet port binded to 
Vlan 20 ,
# interface Vlan 20
  ip address 192.168.1.1/24
and this time started snort_inline with : -Qv -i br0 br1 -c etc/snort_inline.conf
  but my second server can't see my switch SVI : 192.168.1.1  , 
also I tryed to assign Ip to my bridge interfaces and used routing lines but that time it 
  didn't work too . 
what do you think about this case ? if you think that you can show me a way to have bridging 
  snort IPS with 4 ethernet that belong to 2 diffrent VLan with 2 diffrent subnet plz let me 
  know . or if you think my logic is wrong plz let my know the right .
Thanx in advance 

---------------------------------
Do you Yahoo!?
 Get on board. You're invited to try the new Yahoo! Mail Beta.

---------------------------------
Be a chatter box. Enjoy free PC-to-PC calls  with Yahoo! Messenger with Voice.