Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort - reverse DNS on blocked IPs?

    Scheduled Pinned Locked Moved pfSense Packages
    1 Posts 1 Posters 899 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      miles267
      last edited by

      Is it possible to add reverse DNS to snort so that block IPs are looked up?  Similar to how Sarg works for web reporting?  I constantly find myself trying to access sites (i.e. iTunes stores) only to find I'm blocked and cannot quickly identify which IP address listed is the one that I need to Whitelist.  Instead I end up clearing all block IPs which resolves the issue until the same site is blocked minutes or hours later.

      If anyone can share their best practices, it would be much appreciated.  Thanks.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.