3. Snort whitelisting working?

Snort whitelisting working?

  • T

    It seems like I whitelist IPs and they are still subject to blocking. Anybody else seeing this? This is a pfSense 1.2.1-RC2 snapshot from last Sunday morning.

    0
  • T

    @t3rmin:

    It seems like I whitelist IPs and they are still subject to blocking. Anybody else seeing this? This is a pfSense 1.2.1-RC2 snapshot from last Sunday morning.

    Same here on 1.21 RC with latest snort.  I whitelisted my dyndns relay for email, and snort blocked it anyways.  I had to turn a rule off so that i can get mail again.  (I know what that means, but they just relay, I do the scanning on my end).

    a.r.

    0
  • M

    Confirm, whitelist is ignored.

    EDIT:

    1. add ip to whitelist

    2a)
        I ) unload the rule triggering the block and save changes
        II) reload the same rule and save changes

    2b) just restart snort to definitively whitelist IPs

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy