[Snort-users] Flexible Response: Heads up

Bob McDowell bmcdowell at ...7861...
Tue Jan 21 06:46:03 EST 2003


I cleverly got my iptables firewall stuck in a loop last night using
flexible response.  It didn't occur to me at the time, but do not set the
'bad traffic' rule for 'tcp port zero' to reset.

The end result was one bad packet followed by iptables and snort having a
war to see who could spam my logs the most.  I've never seen a screen scroll
so fast...



Bob McDowell
IS Specialist
Cox HealthPlans, LLC
417.269.2848

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20030121/d22f91b9/attachment.html>


More information about the Snort-users mailing list