Date: Thu, 16 Feb 2006 21:15:30 +0000 From: Joe Holden <joe@joeholden.co.uk> To: freebsd-isp@freebsd.org, freebsd-net@freebsd.org Subject: (no subject) Message-ID: <43F4EB72.5090702@joeholden.co.uk>
next in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] Hello list! Sorry for posting this to both, however I wasn't sure which it applied to. I'm looking at creating an intrusion detection system, similiar to portsentry, however using bpf/tcpdump to monitor all traffic, without needing to listen on those ports, it will be run on a border router, and as such will need to check for incoming packets destined for other machines too, and blackhole/add ipfw rules as needed. Are there any tools like this currently available, or a number of tools I can put together to create something like this? -- With thanks, Joe Holden Freelance Network Engineer / Consultant FreeBSD Port Maintainer http://www.joeholden.co.uk Pub Key: http://www.joeholden.co.uk/pubkey.asc Contact: Finger me! [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFD9OtydQJXshOm0ecRAtNuAKCWBQK2J0/zq4GwlfgkzQlwPH16OQCffgxx XU9/nQjToqZTgL2W9kxCOXs= =HG5Q -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?43F4EB72.5090702>