[Snort-users] RE: Attack on snort running in Public Zone

james hackerwacker at ...3784...
Sat Nov 15 23:46:08 EST 2003


Not to start an OS war, but *nix is well known to withstand
DoS'es of a number of kind quite well. IP unnumbered should 
help in this & tuning TCP/IP values. Since this box only needs to listen
to the mirror port, drop all traffic from the internet to this box, on
the next hop router. 






More information about the Snort-users mailing list