[Snort-users] Can snort add a rule to iptables?

Erek Adams erek at ...950...
Wed Apr 30 08:04:10 EDT 2003


On Wed, 30 Apr 2003, Eduardo Faria wrote:

> Hi friends, I am a new one at SNORT world. I read the official
> manual and I have one doubt. Can SNORT match an attack and add
> some rule to iptables , for exemple to drop some ip range of
> address?

No.

You'll have to use a third party script/plugin to do that.  Check out
SnortSam [0] or Guardian (contrib dir of tarball).

Cheers!

-----
Erek Adams

   "When things get weird, the weird turn pro."   H.S. Thompson

[0]	http://www.snortsam.net/





More information about the Snort-users mailing list