Menu
▾
▴
snort-inline-users
|
From: Geoffrey L. [F. C. <gl...@fr...> - 2005-08-05 03:07:28
|
Thanks for the fast email... I am having a little snag with the bridge setup. I get packets when I am sending traffic to my eth0 but when I put the bridge inline on my network (wich consists of eth1 and eth2) I cant pick up any traffic with snortinline. Now my first thought was to look at EBtables but everything looks good their. Any ideas? -- Freedom Computers; Geoffrey D. Levy, GCIA gl...@fr... www.freedomcomputers.ca Phone: (403)710-7147 Fax: (403)251-4517 -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.338 / Virus Database: 267.9.9/62 - Release Date: 8/2/2005 |
|
From: Will M. <wil...@gm...> - 2005-08-05 04:13:03
|
What kernel version are you using? 2.6.x or 2.4.x? On 8/4/05, Geoffrey Levy [Freedom Computers] <gl...@fr...> wr= ote: > Thanks for the fast email... I am having a little snag with the bridge > setup. I get packets when I am sending traffic to my eth0 but when I put > the bridge inline on my network (wich consists of eth1 and eth2) I cant > pick up any traffic with snortinline. Now my first thought was to look > at EBtables but everything looks good their. Any ideas? >=20 > -- > Freedom Computers; > Geoffrey D. Levy, GCIA > gl...@fr... > www.freedomcomputers.ca > Phone: (403)710-7147 > Fax: (403)251-4517 >=20 >=20 >=20 > -- > No virus found in this outgoing message. > Checked by AVG Anti-Virus. > Version: 7.0.338 / Virus Database: 267.9.9/62 - Release Date: 8/2/2005 >=20 >=20 >=20 >=20 > ------------------------------------------------------- > SF.Net email is Sponsored by the Better Software Conference & EXPO > September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practic= es > Agile & Plan-Driven Development * Managing Projects & Teams * Testing & Q= A > Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf > _______________________________________________ > Snort-inline-users mailing list > Sno...@li... > https://lists.sourceforge.net/lists/listinfo/snort-inline-users > |
|
From: Bert v. L. <ber...@gm...> - 2005-08-05 06:51:57
|
Silly question, but: I assume you are using an iptables rule such as "iptables -A FORWARD -j QUEUE", and running snort with -Q (to listen to the IP queue)? > On 8/4/05, Geoffrey Levy [Freedom Computers] <gl...@fr...> = wrote: > > Thanks for the fast email... I am having a little snag with the bridge > > setup. I get packets when I am sending traffic to my eth0 but when I pu= t > > the bridge inline on my network (wich consists of eth1 and eth2) I cant > > pick up any traffic with snortinline. Now my first thought was to look > > at EBtables but everything looks good their. Any ideas? |
|
From: Geoffrey L. [F. C. <gl...@fr...> - 2005-08-05 18:43:34
|
Yes, Indeed. I have figured out the problem. I didnt assign my homenet properly. Just a bit of a typo. Thanks >Silly question, but: I assume you are using an iptables rule such as >"iptables -A FORWARD -j QUEUE", and running snort with -Q (to listen >to the IP queue)? > > > > >>On 8/4/05, Geoffrey Levy [Freedom Computers] <gl...@fr...> wrote: >> >> >>>Thanks for the fast email... I am having a little snag with the bridge >>>setup. I get packets when I am sending traffic to my eth0 but when I put >>>the bridge inline on my network (wich consists of eth1 and eth2) I cant >>>pick up any traffic with snortinline. Now my first thought was to look >>>at EBtables but everything looks good their. Any ideas? >>> >>> > > >------------------------------------------------------- >SF.Net email is Sponsored by the Better Software Conference & EXPO >September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices >Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >_______________________________________________ >Snort-inline-users mailing list >Sno...@li... >https://lists.sourceforge.net/lists/listinfo/snort-inline-users > > -- Freedom Computers; Geoffrey D. Levy, GCIA gl...@fr... www.freedomcomputers.ca Phone: (403)710-7147 Fax: (403)251-4517 -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.338 / Virus Database: 267.10.1/64 - Release Date: 8/4/2005 |
|
From: Geoffrey L. [F. C. <gl...@fr...> - 2005-08-05 18:47:36
|
2.6.x, I have the problem resolved. >What kernel version are you using? 2.6.x or 2.4.x? > >On 8/4/05, Geoffrey Levy [Freedom Computers] <gl...@fr...> wrote: > > >>Thanks for the fast email... I am having a little snag with the bridge >>setup. I get packets when I am sending traffic to my eth0 but when I put >>the bridge inline on my network (wich consists of eth1 and eth2) I cant >>pick up any traffic with snortinline. Now my first thought was to look >>at EBtables but everything looks good their. Any ideas? >> >>-- >>Freedom Computers; >>Geoffrey D. Levy, GCIA >>gl...@fr... >>www.freedomcomputers.ca >>Phone: (403)710-7147 >>Fax: (403)251-4517 >> >> >> >>-- >>No virus found in this outgoing message. >>Checked by AVG Anti-Virus. >>Version: 7.0.338 / Virus Database: 267.9.9/62 - Release Date: 8/2/2005 >> >> >> >> >>------------------------------------------------------- >>SF.Net email is Sponsored by the Better Software Conference & EXPO >>September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices >>Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >>Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >>_______________________________________________ >>Snort-inline-users mailing list >>Sno...@li... >>https://lists.sourceforge.net/lists/listinfo/snort-inline-users >> >> >> > > >------------------------------------------------------- >SF.Net email is Sponsored by the Better Software Conference & EXPO >September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices >Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA >Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf >_______________________________________________ >Snort-inline-users mailing list >Sno...@li... >https://lists.sourceforge.net/lists/listinfo/snort-inline-users > > -- Freedom Computers; Geoffrey D. Levy, GCIA gl...@fr... www.freedomcomputers.ca Phone: (403)710-7147 Fax: (403)251-4517 -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.338 / Virus Database: 267.10.1/64 - Release Date: 8/4/2005 |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X