Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    SNORT questions: exclude internal IP from SNORT

    pfSense Packages
    2
    4
    2249
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      bwong3351 last edited by

      Have a newbie SNORT question. Is it possible to exclude certain internal IP range from SNORT. The SNORT white list seems to only work on external IP.

      Reason is I have a few smart TV behind pfsense. Sometime the video source IP will get block by pfsense due to various rules. It is a major PIB to keep on adding whitelist IP because some of the source have large IP range and not always in continuous block.

      Thanks in advance

      1 Reply Last reply Reply Quote 0
      • B
        bwong3351 last edited by

        bump

        1 Reply Last reply Reply Quote 0
        • S
          Supermule Banned last edited by

          You just use the alias of the TV on the whitelist…

          1 Reply Last reply Reply Quote 0
          • B
            bwong3351 last edited by

            somehow whitelist did not work for me. Eventually I edit the snort conf directly and build up  the home_lan  var and exclude the IP range. So far so good.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post