Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login
    Introducing Netgate Nexus: Multi-Instance Management at Your Fingertips.

    Does Snort Inline Blocking Effect All Interfaces?

    Scheduled Pinned Locked Moved IDS/IPS
    1 Posts 1 Posters 54 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • planedropP Offline
      planedrop
      last edited by

      One thing I've been confused about as I dive into Snort more in pfSense is the blocking modes. In most cases I'd prefer to have inline since it can stop packets before any get to the destination, however, inline mode is described in a lot of posts as being in between the host stack and the "physical interface".

      I'm curious if enabling this impacts more VLANs or if it just impacts the selected VLAN I have Snort running on in this environment.

      Any ideas?

      On an additional note, does this change require a reboot or anything along those lines?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2026 Rubicon Communications LLC (Netgate). All rights reserved.