From: Russ Combs (rcombssourcefire.com)
Date: Wed Aug 04 2010 - 11:33:17 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Please send your Snort version and the command line you are using.

Thanks
Russ

On Wed, Aug 4, 2010 at 12:01 PM, Bobby Venal <bobby.venalgmail.com> wrote:

> Hello,
>
> I just got snort running inline last night (-Q), and was getting some
> priority 3 alerts from our netflix box.
>
> What seemed weird was that I hadn't added any iptables rules yet to pass
> any packets to QUEUE.
>
> So my question is: does snort inline still watch packets with pcap, in
> addition to anything passed to it through QUEUE?
>
>
> ------------------------------------------------------------------------------
> The Palm PDK Hot Apps Program offers developers who use the
> Plug-In Development Kit to bring their C/C++ apps to Palm for a share
> of $1 Million in cash or HP Products. Visit us here for more details:
> http://p.sf.net/sfu/dev2dev-palm
> _______________________________________________
> Snort-users mailing list
> Snort-userslists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users
>

------------------------------------------------------------------------------
The Palm PDK Hot Apps Program offers developers who use the
Plug-In Development Kit to bring their C/C++ apps to Palm for a share
of $1 Million in cash or HP Products. Visit us here for more details:
http://p.sf.net/sfu/dev2dev-palm

_______________________________________________
Snort-users mailing list
Snort-userslists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]