Date: Wed, 21 Nov 2001 12:55:22 -0800 From: Kris Kennaway <kris@obsecurity.org> To: Paul van der Zwan <paulz@trantor.xs4all.nl> Cc: security@FreeBSD.ORG Subject: Re: ipfw and snort Message-ID: <20011121125522.A17380@xor.obsecurity.org> In-Reply-To: <200111212002.fALK2vV20500@trantor.xs4all.nl>; from paulz@trantor.xs4all.nl on Wed, Nov 21, 2001 at 09:02:57PM %2B0100 References: <200111212002.fALK2vV20500@trantor.xs4all.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
--7AUc2qLy4jB3hD7Z Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Nov 21, 2001 at 09:02:57PM +0100, Paul van der Zwan wrote: >=20 > I would like to run snort on my ppp link to my ISP to see what people are > trying, but I also have a set of ipfw rules to allow only the traffic I > want to allow. > Is there a way to have those rules in place but still have snort see all= =20 > incoming packets including those running into the deny rules ?? Yes, this is how it works always. Kris --7AUc2qLy4jB3hD7Z Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7/BS5Wry0BWjoQKURAsIHAJ0dCARZVWb+l0bwd+4af+sQ9tisigCfSNiF lwoSmo2fjcVA2bO+8KUTlCA= =/Usk -----END PGP SIGNATURE----- --7AUc2qLy4jB3hD7Z-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011121125522.A17380>