Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Snort & iptables on the same box

from [snort user] Network Security [Permanent Link]
Subject: Re: Snort & iptables on the same box
Date: Mon, 13 Jun 2005 18:25:04 -0400 
Iptables has a bunch of rules
one of them will say 'forward to QUEUE'
Snort picks up from this QUEUE and marks it PASS or BLOCK
Iptables actually drops on that decision
Other IPtables rules are not affected


On 6/10/05, Jean-Pierre Denis <jp@webglobe.ca> wrote:

Hi,


 When running snort and iptables on the same box, which of the 2 act first ?

 Those it go thru snort and then the iptable rule allow or deny the
connection
 or it's the other way around


Merci,
JP


-----------------------------------------
 WebMail Powered by WebGlobe.
 http://www.webglobe.ca


--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
--------------------------------------------------------------------------




--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from 
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
--------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Vulnerability & Exploit Signatures, Kelly Dowd
Next by Date:  NIPS/NIDS performance evaluation query, snort user
Previous by Thread:  Re: Snort & iptables on the same box, Michael Boman
Next by Thread:  BASE 1.1.3 release, Kevin Johnson
Indexes:  [Date] [Thread] [Top] [All Lists]