Hi Justin,
First of all, thank you for testing my diff and providing feedback!
At the moment, the need to use -k none with Snort inline is expected.
Briefly, due to the way packets are processed when divert-packet is used
with NAT, the checksums of packets being diverted from the kernel to
sday, March 07, 2013 4:02 PM
To: 'Lawrence Teo'
Cc: misc@openbsd.org
Subject: RE: snort inline
This works. Thank you very much. I'll let you know if I run into any issues
but I am able to run snort inline now along with NAT.
Justin
-Original Message-
From: Lawrence
This works. Thank you very much. I'll let you know if I run into any issues
but I am able to run snort inline now along with NAT.
Justin
-Original Message-
From: Lawrence Teo [mailto:l...@openbsd.org]
Sent: Wednesday, March 06, 2013 8:55 AM
To: Justin Mayes
Cc: misc@openbs
FYI
This patch has corrected my issues with snort inline and NAT
http://marc.info/?l=openbsd-tech&m=136245826921904&w=2
-Original Message-
From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On Behalf Of
Justin Mayes
Sent: Wednesday, December 19, 2012 3:10 PM
nday, November 25, 2012 4:37 PM
> To: misc@openbsd.org
> Subject: Re: snort inline
>
> Quick update. It seems to be a nat problem. If I just test by pinging either
> the 192.168.1.32 interface or the 192.168.0.13 interface it works fine and
> snort sees the packets. Its only when th
] On Behalf Of
Justin
Sent: Sunday, November 25, 2012 4:37 PM
To: misc@openbsd.org
Subject: Re: snort inline
Quick update. It seems to be a nat problem. If I just test by pinging either
the 192.168.1.32 interface or the 192.168.0.13 interface it works fine and
snort sees the packets. Its only when
[mailto:owner-m...@openbsd.org] On Behalf Of
Justin Mayes
Sent: Saturday, November 24, 2012 2:21 PM
To: misc@openbsd.org
Subject: snort inline
Anyone running snort 2.9.3.1p0 in inline / IPS mode with 5.2 cuurent? From
what I read it's possible with pf divert functionality.
This is what I'm doing f
Anyone running snort 2.9.3.1p0 in inline / IPS mode with 5.2 cuurent? From
what I read it's possible with pf divert functionality.
This is what I'm doing for testing in pf using simple ping
Gateway info
internal interface fxp0 - 192.168.1.32
external interface bce0 - 192.168.0.13
Runni
The problem is, that the firewall MUST run with OpenBSD !!
Thanks for answers
> From: Florian [mailto:[EMAIL PROTECTED]
> Sent: dinsdag 6 september 2005 15:20
> To: misc@openbsd.org
> Subject: Snort-Inline with OpenBSD
>
> Hello community
>
> I tried to install Snort_Inline on my OpenBSD-firewall.
> But in the ports-collection only snort is impleme
Do you search for something like this?
http://www.thinknerd.org/~ssc/wiki/doku.php?id=snort2pf
-Original Message-
From: Florian [mailto:[EMAIL PROTECTED]
Sent: dinsdag 6 september 2005 15:20
To: misc@openbsd.org
Subject: Snort-Inline with OpenBSD
Hello community
I tried to install
> Now my question: Is there any way to install snort with inline functionality
> ??
i dont know, snort inline need netfilter API.
you can to use snortsam. -> http://www.snortsam.net
Hello community
I tried to install Snort_Inline on my OpenBSD-firewall.
But in the ports-collection only snort is implemented.
when I try to compile / configure the sources from www.snort.org with
--enable-inline
I get an error that a "libipq.h" is missing. Its a file for iptables under
linux.
Now
13 matches
Mail list logo
