[Snort-sigs] Need Rules for blocking IP's

Al Lewis (allewi) allewi at ...3865...
Fri Feb 26 07:02:11 EST 2016


Please refer to the snort manual for more detailed information and check out the README files included.

Section on active response.


Albert Lewis
QA Software Engineer
SOURCEfire, Inc. now part of Cisco
9780 Patuxent Woods Drive
Columbia, MD 21046
Phone: (office) 443.430.7112
Email: allewi at ...3865...

From: ARUN LAL [mailto:arunlal7701 at ...2420...]
Sent: Friday, February 26, 2016 6:23 AM
To: Snort-sigs at lists.sourceforge.net
Subject: [Snort-sigs] Need Rules for blocking IP's

Hi All,

I need some snort rules to block attacker IP. Let us know how to write a custom rule to block the attacker IP in firewall. Could you mention the file where we need to make the changes in order to block the attacker IP? If there is any rule for blocking IP then please provide us. It will be very helpful for us.
Thanks in advance
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-sigs/attachments/20160226/f5cd55b6/attachment.html>

More information about the Snort-sigs mailing list