Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort except block, there is a packet drop feature?

    IDS/IPS
    3
    6
    1.2k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      magura
      last edited by

      Just automatically  discarded illegal packets
      I do not want to block SRC OR DST IP
      Whether to make?

      1 Reply Last reply Reply Quote 0
      • F
        fragged
        last edited by

        Can't be done as Snort can't work in 'inline' mode yet on pfSense.

        1 Reply Last reply Reply Quote 0
        • M
          magura
          last edited by

          in-line mode will develop the future?  ;D

          1 Reply Last reply Reply Quote 0
          • bmeeksB
            bmeeks
            last edited by

            Yes, there are future plans for in-line mode.  Changes are necessary in the pfSense kernel code to fully support this (primarily full support for netmap).

            Bill

            1 Reply Last reply Reply Quote 0
            • M
              magura
              last edited by

              what pfsense version will be provided. ;D
              Thank you

              1 Reply Last reply Reply Quote 0
              • bmeeksB
                bmeeks
                last edited by

                Not yet known.  That will be up to the pfSense core developers.  I'm just a volunteer package maintainer for Snort and Suricata… :).  It has been posted here and elsewhere this is a planned feature, but no specific version/timetable has been given.

                Bill

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.