Re: iptables, limit control and trigger program
Hello martin f krafft <madduck@debian.org>,
Yes. But snort logs the unusual behavior only. It can't trigger foreign
program to immediately block the traffic. Is there any way to make snort
to cooperate with iptables seamlessly?
On Fri, 19 Jul 2002 10:01:05 +0200
martin f krafft <madduck@debian.org> wrote:
> also sprach Patrick Hsieh <pahud@pahud.net> [2002.07.19.0952 +0200]:
> > Now that iptables has limit and iplimit modules, I can use this feature
> > to block many kinds of flood attack. My question is, how can I use
> > iptables limit/iplimit module to cooperate with foreign program so that
> > when a peak limit is reached, it will trigger my customized program?
> >
> > Is there any similar solution about this?
>
> this seems more like the job of a NIDS (network-based intrusion
> detection system) like snort...
>
> --
> martin; (greetings from the heart of the sun.)
> \____ echo mailto: !#^."<*>"|tr "<*> mailto:"; net@madduck
>
> al telefono: "pronto? cantina sociale?". "hic!".
--
Patrick Hsieh <pahud@pahud.net>
--
To UNSUBSCRIBE, email to debian-user-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: