[Netkit.users] Iptables and Snort in-line
Swotino Swoti
swotino at hotmail.it
Fri Aug 28 12:07:25 CEST 2009
Hi,
I want create a simulation of IPS with Snort in-line anche Iptables. I installed Snort in-line and use this command:
# iptables -A OUTPUT -p tcp --dport 80 -j QUEUE
# snort -QDc /etc/snort/snort.conf
I configured snort.conf:
# Configure Inline Resets
# ========================
#
....
#
config layer2resets
config layer2resets: 96:b6:23:db:10:14
But everytime Snort run, it return me this message:
Reading from iptables
Running in IDS mode
Initializing Inline mode
InitInline: : Failed to send netlink message: Connection refused
So I try to load module ip_queue with:
modprobe ip_queue
FATAL: Module ip_queue not found
What can I do?
_________________________________________________________________
Messenger è su Hotmail. Scopri le novità.
http://www.messenger.it/accediWebMessengerHotmail.aspx
-------------- parte successiva --------------
Un allegato HTML ? stato rimosso...
URL: http://list.dia.uniroma3.it/pipermail/netkit.users/attachments/20090828/4e1652af/attachment.htm
More information about the Netkit.users
mailing list