* IPS recommendations?
@ 2011-06-15 19:39 bmcdowell
2011-06-15 20:56 ` Victor Julien
0 siblings, 1 reply; 2+ messages in thread
From: bmcdowell @ 2011-06-15 19:39 UTC (permalink / raw)
To: netfilter
Is anyone on the list using some form of IPS that integrates well with netfilter-driven firewalls? I haven't looked into this particular angle since snort-inline in 2003.
Bob McDowell
Network/Security Engineer
Cox HealthPlans
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: IPS recommendations?
2011-06-15 19:39 IPS recommendations? bmcdowell
@ 2011-06-15 20:56 ` Victor Julien
0 siblings, 0 replies; 2+ messages in thread
From: Victor Julien @ 2011-06-15 20:56 UTC (permalink / raw)
To: bmcdowell; +Cc: netfilter
You can check Snort[1] (contains inline support), Suricata[2] or
something like fwsnort[3].
Personally I'm "using" Suricata, because I'm developing it ;-)
Cheers,
Victor
[1] http://www.snort.org/
[2] http://openinfosecfoundation.org/
[3] http://www.cipherdyne.org/fwsnort/
On 06/15/2011 09:39 PM, bmcdowell@coxhealthplans.com wrote:
> Is anyone on the list using some form of IPS that integrates well with netfilter-driven firewalls? I haven't looked into this particular angle since snort-inline in 2003.
>
>
> Bob McDowell
> Network/Security Engineer
> Cox HealthPlans
>
> --
> To unsubscribe from this list: send the line "unsubscribe netfilter" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
>
--
---------------------------------------------
Victor Julien
http://www.inliniac.net/
PGP: http://www.inliniac.net/victorjulien.asc
---------------------------------------------
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2011-06-15 20:56 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2011-06-15 19:39 IPS recommendations? bmcdowell
2011-06-15 20:56 ` Victor Julien
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox