Displaying 20 results from an estimated 1100 matches similar to: "shorewall and IDS in the same box"
2003 Mar 04
7
New Firewall setup recommendations?
Hello all.
I''m about to set up a new firewall on an old 400 MHz K6-2 machine. What
is the recommended, or most common way to go about it?
I was thinking of doing a MINIMUM install of RedHat 8 (the option where
they actually say "used for setting up things like firewalls") and then
installing shorewall on top of that. Would this leave me with anything
crucial missing in my
2003 Nov 05
4
FBSD All-in-one security box?
Hey *, as I sweat through another day of crap dealing with an
all-in-one box (firewall, IDS, AVS, report generating, soon to
be a VPN server) I'm wondering if someone has started a project
to put some freeware together in some semblance of sanity on a
FBSD box. There's basically nothing that this box does that a
combo of IPFW (or another bsd filter), snort, ntop, and some
other freeware
2004 Jan 11
5
BSD-licensed IDS/IDP Software?
I seem to remember seeing somewhere (on this list/on the web -- don't
remember) that there was some ``Snort-like'' software that was available under
the BSD license. Unfortunately, I'm unable to find any information about such
software. Was I dreaming, or can anybody else jog my memory? :)
Kind regards,
Devon H. O'Dell
2008 Dec 23
4
tripwire on centos 5
Does anybody use tripwire on centos 5? Has anybody checked that: http://www.linickx.com/archives/281/tripwire-2411-rpm-for-centos-redhat-rhel-4 on centos5?
M.
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
2003 Jul 15
12
Port Forwarding Trouble with Mandrake MNF
Please excuse my ignorance as I''m a linux newbie.
Basically I have a setup of an adsl ethernet modem (nated and then
everything forwarded to the external ip of my Mandrake mnf firewall)
connected to the mnf firewall which then connects to the lan.
internet <--> adsl modem <--> mnf firewall <--> lan
There''s only 2 nics in the mnf firewall so it''s a
2009 Feb 06
2
annotating a filled contours plot with a grid of points
Dear R-help members,
I am trying to plot annotate a filled contours plot (with filled.contour)
with a grid of points. I have read ways of annotating it with individual
points but not with grids in another matrix.
Any ideas?
Thank you very much.
Dario
___________________________________
Dario Martin-Benito
CIFOR-INIA
Dpto. Sistemas y Recursos
2005 Jan 13
3
Aggregating logs from numerous FreeBSD machines
Hi folks,
My stack of trusty FreeBSD servers always seems to be growing, and it's
getting to the point where the daily and security output mail is too much to
make good use of. I'm looking for suggestions for log monitoring and
aggregation tools, especially from a monitoring-for-security perspective.
If I had to imagine an ideal system, it would be a central server that
securely
2003 Jan 03
9
Rearranging the furniture....
Hi Tom and All,
I have been quietly watching the list for the last year (no new issues for
me that weren''t covered in the docs or promptly "bug-fixed" by Tom. Boy,
has this grown exponentially! Anyway, back to the point (the proverbial
rearranging the furniture)... I have been evaluating Mandrake''s MNF as an
upgrade for my Firewall box. If I do this( and even if I
2005 Oct 20
8
Shorwall with Snort inline, question.
Question to the list,
Has anyone here had experience using Shorewall (multi-isp configuration)
with Snort inline? First, is this possible? Second, if anyone has done
this, what documentation, if any did they use to set it up? Third, does
snort have to run inline on a firewall (I''m under the impression it does)?
2006 Jan 03
3
ip_queue module issue
Hi All,
I am adding ip_queue module for snort inline IDS.
I am using snort2.4.0
And iptables-1.3.4.
Userspace Queuing(queue target) is enabled. It is built-in and not built as
a module.
The output of /proc/net/ip_queue is shown below:
cat /proc/net/ip_queue>
Peer PID : 0
Copy mode : 0
Copy range : 0
Queue length : 0
Queue max. length : 1024
IPTABLES 1.3.4 is
2008 May 27
4
freebsd and snort
Hello all:
I tried to install snort under /usr/ports/security and have some problems. with "make all", I checked every item on the menu but I got error messages:
//////////////////////////////
laptop# make all
===> snort-2.8.1_1 is marked as broken: FLEXRESP2 patch file does not incorporate cleanly.
*** Error code 1
Stop in /usr/ports/security/snort.
2010 Dec 13
1
monitoring contents of a directory
Hi
I am using puppet to mirror a directory of files, if any of these
change then processes need to be restarted.
class snort {
package {
["snort", "perl-Archive-Tar", "barnyard2", "perl-libwww-perl", "perl-
Crypt-SSLeay"]:
ensure => present;
} # package
user{
"snort":
managehome => true,
2010 Dec 07
1
dependency loops ???
I have a dependency loop reported but I can not see how this can be:
class monitor {
class pulledpork ( $master) {
exec {
"/home/snort/bin/pulledpork -nc conf/$master/pp.conf":
cwd => "/home/snort",
subscribe => [File["/home/snort/conf/$master/pp"], File[ "/
home/snort/Rules/$master"] ],
notify =>
2005 Mar 29
4
Shorewall and an inline IDS (snort-inline or hogwash)
Is anyone using an inline IDS like hogwash or snort-inline to drop
packets in a system running shoreline? I _think_ I see how to
configure it, but I''d be really interested in finding a howto or
something...
Thanks!
Mike-
--
Mornings: Evolution in action. Only the grumpy will survive.
--
Please note - Due to the intense volume of spam, we have installed site-wide spam
filters at
2013 Aug 29
2
shorewall and snort - recommendation
Dear all,
I''m setting up a new gateway for a small network (under 30 users)Gw will host the following services:shorewalldnsproxy
i''m considering installing snort.can i do so on the same exact box ? is there any security risk of doing so ?
box would have 4 ISPs and two internal interfaces.
Any recommendation about the optimal setup of snort and shorewall (or if you suggest
2005 Mar 30
7
RE: Shorewall and an inline IDS (snort-inline orhogwash)
I made an atempt to run snort_inline and shorewall on the same system
but I could not get snort to see the packets.
Maybe someone with a little more iptables knowledge could tell me what
I''m doing wrong or if its possible to have the systems setup so that it
places packets that the firewall would allow into QUEUE.
After setting up and starting shorewall I then issue the following
2010 Aug 15
24
Xen patches merged to upstream Linux 2.6.36, plans for 2.6.37?
Hello,
It looks like upstream linux-2.6.git contains at least the following
xen related new features for Linux 2.6.36:
- Xen-SWIOTLB support (required for Xen PCI passthru and dom0)
- Xen PV-on-HVM drivers
- Xen VBD online dynamic resize of guest disks (xvd*)
Congratulations!
What are the plans for 2.6.37 merge window? I believe at least:
- Xen PCI frontend
Others? I''m going to
2009 Jun 25
7
Snort on domU
Hi Everyone,
Can anyone confirm if a xen based domU can be used for snort setup? It is
not for commercial use, rather just SOHO use.
Regards,
dot.yet
_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users
2009 Jun 25
7
Snort on domU
Hi Everyone,
Can anyone confirm if a xen based domU can be used for snort setup? It is
not for commercial use, rather just SOHO use.
Regards,
dot.yet
_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users
2013 Jul 21
9
build for pv-grub stubdom
Does this
install -d -m0755 -p
"/mnt/gen2/TmpDir/portage/app-emulation/xen-pvgrub-4.3.0/image//usr/lib/xen/boot"
install -m0644 -p mini-os-x86_32-grub/mini-os.gz
"/mnt/gen2/TmpDir/portage/app-emulation/xen-pvgrub-4.3.0/image//usr/lib/xen/boot/pv-grub-x86_32.gz"
make: Leaving directory
`/mnt/gen2/TmpDir/portage/app-emulation/xen-pvgrub-4.3.0/work/xen-4.3.0/stubdom'