Date: Wed, 21 Nov 2001 12:55:22 -0800 From: Kris Kennaway <kris@obsecurity.org> To: Paul van der Zwan <paulz@trantor.xs4all.nl> Cc: security@FreeBSD.ORG Subject: Re: ipfw and snort Message-ID: <20011121125522.A17380@xor.obsecurity.org> In-Reply-To: <200111212002.fALK2vV20500@trantor.xs4all.nl>; from paulz@trantor.xs4all.nl on Wed, Nov 21, 2001 at 09:02:57PM %2B0100 References: <200111212002.fALK2vV20500@trantor.xs4all.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] On Wed, Nov 21, 2001 at 09:02:57PM +0100, Paul van der Zwan wrote: > > I would like to run snort on my ppp link to my ISP to see what people are > trying, but I also have a set of ipfw rules to allow only the traffic I > want to allow. > Is there a way to have those rules in place but still have snort see all > incoming packets including those running into the deny rules ?? Yes, this is how it works always. Kris [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7/BS5Wry0BWjoQKURAsIHAJ0dCARZVWb+l0bwd+4af+sQ9tisigCfSNiF lwoSmo2fjcVA2bO+8KUTlCA= =/Usk -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011121125522.A17380>