3. Snort block

Snort block

  • A

    I noticed that there are entries in my Alert tab that are not in the Block tab.  The entries all happen to have a Priority of 1 and src = my WAN interface.  Are they not being blocked because of the priority, or because they are outgoing?

    0
  • A

    Does anyone have any idea about this?  This seems to be an important concept of Snort that I'd like to learn.  Once again, for all enabled rules, some only alert, while other alert and block.  What determines blocking?

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy