Snort mailing list archives
APF with snort
From: "Tom Lee" <tom_lee01 () hotmail com>
Date: Fri, 24 Feb 2006 00:19:32 +0000
Hello, I use APF firewall in linux and try to use it along with snort. for configuration file /etc/apf/ad/conf.antidos it has the option to check with snort portscan log file, # Snort portscan log file [experimental] SLOG="/var/log/snort/portscan.log"How can I make the portscan (scan.rules?) log file goes to /var/log/snort/portscan.log?
It will allow me to block those malicious IPs in advance. thanks. Tom ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642 _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- APF with snort Tom Lee (Feb 23)