Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort: Apply to LAN also applies to VLANs??

    Scheduled Pinned Locked Moved pfSense Packages
    2 Posts 2 Posters 678 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ?
      A Former User
      last edited by

      Hi,

      If you attach a ruleset to the LAN interface, does it also affect any VLANs on that interface?

      I noticed that applying a rule to the LAN blocked a web client on a particular VLAN that did not have the rule.  If this is by design, great, as it allows me to simplify the application of the rulesets across all the VLANs on the LAN.

      Just wanted to make sure that I'm not overlooking something, or making my snort setup ineffective by putting the rules against the LAN interfaces instead of the VLAN interfaces.

      Regards,
      Rob.

      1 Reply Last reply Reply Quote 0
      • F
        fragged
        last edited by

        Snort puts the interface into promiscuous mode and thus will see all traffic hitting that physical interface including VLAN's, PPPoE etc.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.