From owner-freebsd-questions@FreeBSD.ORG Fri Dec 5 04:10:26 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E686F16A4CE for ; Fri, 5 Dec 2003 04:10:26 -0800 (PST) Received: from morpheus.webteckies.org (node123e0.a2000.nl [24.132.35.224]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4488F43F93 for ; Fri, 5 Dec 2003 04:10:25 -0800 (PST) (envelope-from freebsd-questions@webteckies.org) Received: from sarevok.idg.nl (ardvark.idg.nl [62.250.13.24]) by morpheus.webteckies.org (Postfix) with ESMTP id 333BF107C6; Fri, 5 Dec 2003 13:06:57 +0100 (CET) From: Melvyn Sopacua Organization: WebTeckies.org To: Jez Hancock Date: Fri, 5 Dec 2003 13:10:16 +0100 User-Agent: KMail/1.5.93 References: <20031205002412.GA37507@users.munk.nu> <20031205.103353.985d01b49b9f3980.10.0.3.9@bugsgrief.net> <20031205105839.GC65445@users.munk.nu> In-Reply-To: <20031205105839.GC65445@users.munk.nu> MIME-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="Boundary-02=_sWH0/0xGw0O+GEF"; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <200312051310.20404.freebsd-questions@webteckies.org> cc: freebsd-questions@FreeBSD.org Subject: Re: ipfilter traffic blocking and tcpdump snort etc X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Dec 2003 12:10:27 -0000 --Boundary-02=_sWH0/0xGw0O+GEF Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Friday 05 December 2003 11:58, Jez Hancock wrote: > Let me rephrase that one :P I meant is there a method - for example > such as adding some kind of routing via arp - so that packets are > dropped on the floor even quicker than they would be via the firewall > method? You could bind the ip's to the loopback interface, but I think the firewall= =20 setup is quicker. =2D-=20 Melvyn =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D =46reeBSD sarevok.idg.nl 5.2-BETA FreeBSD 5.2-BETA #1: Thu Dec 4 12:47:31 = CET=20 2003 root@sarevok.idg.nl:/usr/obj/usr/src/sys/SAREVOK_NOAPM_NODEBUG i3= 86 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D --Boundary-02=_sWH0/0xGw0O+GEF Content-Type: application/pgp-signature Content-Description: signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQA/0HWsOv9JNmfFN5URAtxvAJ9Hby3huS8tdQIGNFR8LeGodaNuBwCgiLod jipMISfioVAx1eHJYQz+0Yc= =8Oqe -----END PGP SIGNATURE----- --Boundary-02=_sWH0/0xGw0O+GEF--