I was wondering if anyone uses snort on pfsense. The reason I ask is when I select the rule sets for a particular interface there are 3 policy options to choose. OR You can disable that and choose which rules you want to activate. To my understanding setting the "policy" option automatically uses rules and then manually selecting the emerg threats rules.
Is that right? It seems like the only logs that I'm getting are from emerging threats and either I have a misconfiguration or there hasn't been anything come across the wire to trigger something else.
_______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
