iptables rules......
iptables -t mangle -A FORWARD -p tcp --syn -m state --state NEW -j
MARK --set-mark 1
iptables -t mangle -A FORWARD -p tcp -m state --state
RELATED,ESTABLISHED -j MARK --set-mark 2
iptables -I FORWARD -m mark --mark 1 -j QUEUE
iptables -I FORWARD -m mark --mark 2 -j QUEUE
tell stream4 about state tracking via snort.conf iptablesnewmark
defaults to 1, iptablesestmark defaults to 2...........
preprocessor stream4: disable_evasion_alerts, iptablesnewmark,
iptablesestmark, forceiptstate
Regards,
Will
On Wed, 29 Dec 2004 13:56:40 +0700 (ICT), tha...@gb...
<tha...@gb...> wrote:
> i've a problem about connection time out.
> i'm using snort-inline 2.2.0a with clamav support
> it's perfect for me and i really like it.
> but i've notice that it make my connection time out's value to short.
>
> i can ssh out of my network only a few minute and it freeze then i've to
> make a new connection. hmm it's also irc too.
>
> do any one have the same problem ?
> where should i have to fix or tuning the value ??
>
> regards,
> Thanasin Jitkaew
>
> -------------------------------------------------------
> SF email is sponsored by - The IT Product Guide
> Read honest & candid reviews on hundreds of IT Products from real users.
> Discover which products truly live up to the hype. Start reading now.
> http://productguide.itmanagersjournal.com/
> _______________________________________________
> Snort-inline-users mailing list
> Sno...@li...
> https://lists.sourceforge.net/lists/listinfo/snort-inline-users
>
|
