Hello,
I read Nick Rogness' helpful article on using snort-inline
with ipfw.
It mentions that diverting to a snort process can't be done
with
bridging because of "interaction of DIVERT sockets and
bridging in
the kernel". The article is not dated and it made me
wonder if this
is referring to the previous bridge capability rather than
the newer
if_bridge. I'm using if_bridge in my implementation.
The question is, is it still a problem to divert to
snort-inline from
ipfw when using if_bridge?
Thanks,
Chris
Ref: http://freebs
d.rogness.net/snort-inline
5th paragraph entitled "BEFORE YOU START"
_______________________________________________
freebsd-questions freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-que
stions
To unsubscribe, send any mail to
"freebsd-questions-unsubscribefreebsd.org"
|
