Help!

enable IDS / snort rules (automatically)

  
Post new topic   General Reply to Topic (not reply to a specific post)    Forums Home -> SmoothWall RSS
Next:  Accepted lambdamoo 1:1.8.2-cvs20050209-3 (source ..  
Author Message
Cheech Chong
External


Since: Jan 09, 2006
Posts: 1
PostPosted: Mon Jan 09, 2006 1:55 am    Post subject: enable IDS / snort rules (automatically)
Archived from groups: alt>os>linux>smoothwall (more info?)

Hello,

Anyone know how to enable the IDS (Snort) to actually block identified
attacks? From what I have read online Snort running on Smoothwall
only identifies the intrusions, but does not block them.

My example is: Forwarded port 80 to a web server on my LAN, and I am
looking for a 'second level' of defense if I forget to install an
update on my server.

Thanks,
--CC
Back to top
Jeffrey Alsip
External


Since: Feb 23, 2005
Posts: 15
PostPosted: Mon Jan 09, 2006 1:55 am    Post subject: Re: enable IDS / snort rules (automatically) [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
My experience suggests that Smoothwall is very good at "identifying"
but not very good at actually "blocking". It is up to you to identify
the addresses that you want to add to your "blocked senders" list.

As a second line of defense, I run Zone Alarm (the free version) on my
workstations. If you want a FREE version of something like this to run
on your Servers, good luck. If you do find one, please let us all know.
Back to top
Display posts from previous:   
Post new topic   General Reply to Topic (not reply to a specific post)    Forums Home -> SmoothWall All times are: Eastern Time (US & Canada)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum