From owner-freebsd-security@FreeBSD.ORG  Tue Jun  6 14:22:08 2006
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
X-Original-To: freebsd-security@freebsd.org
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 489DE16B84E
	for <freebsd-security@freebsd.org>;
	Tue,  6 Jun 2006 14:22:08 +0000 (UTC)
	(envelope-from nigel@warpten.net)
Received: from librarian.warpten.net
	(adsl-68-76-163-179.dsl.spfdil.ameritech.net [68.76.163.179])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 3BC0E43D46
	for <freebsd-security@freebsd.org>;
	Tue,  6 Jun 2006 14:22:06 +0000 (GMT)
	(envelope-from nigel@warpten.net)
Received: from localhost (localhost [127.0.0.1])
	by librarian.warpten.net (Postfix) with ESMTP id 4F4C1246
	for <freebsd-security@freebsd.org>;
	Tue,  6 Jun 2006 09:22:06 -0500 (CDT)
Received: from librarian.warpten.net ([127.0.0.1])
	by localhost (librarian.warpten.net [127.0.0.1]) (amavisd-new,
	port 10024)
	with ESMTP id 90180-05 for <freebsd-security@freebsd.org>;
	Tue,  6 Jun 2006 09:21:53 -0500 (CDT)
Received: from localhost (enterprise.warpten.net [192.168.1.1])
	by librarian.warpten.net (Postfix) with ESMTP id 8582B109
	for <freebsd-security@freebsd.org>;
	Tue,  6 Jun 2006 09:21:53 -0500 (CDT)
Date: Tue, 6 Jun 2006 09:21:52 -0500
From: Nigel Houghton <nigel@warpten.net>
To: freebsd-security@freebsd.org
Message-ID: <20060606142151.GA19435@warpten.net>
Mail-Followup-To: Nigel Houghton <nigel@warpten.net>,
	freebsd-security@freebsd.org
References: <BAY106-F499896AC3826A59CA8EF1AE950@phx.gbl>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <BAY106-F499896AC3826A59CA8EF1AE950@phx.gbl>
User-Agent: Mutt/1.4.2.1i
X-Virus-Scanned: by amavisd-new at warpten.net
X-Mailman-Approved-At: Tue, 06 Jun 2006 15:14:10 +0000
Subject: Re: Need help on ipfw IDS support.
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: freebsd-security@freebsd.org
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Jun 2006 14:22:16 -0000

On  0, Sunil Sunder Raj <unixtools@hotmail.com> wrote:
> Hi,
> 
> Is it possible to integrate SNORT with IPFW. I have an entire network 
> behind an IPFW BRIDGE. Just need IDS capability enabled for the network. 
> Just an hint is enough. Any other way I can achieve this in IPFW.
> 
> -Sunil Sunder Raj

Yes, snort has a configure option to enable ipfw support.

-- 
Nigel

Darkness is not the absence of light.
It is the presence of Vin Diesel.