Snort except block, there is a packet drop feature?
-
Just automatically discarded illegal packets
I do not want to block SRC OR DST IP
Whether to make? -
Can't be done as Snort can't work in 'inline' mode yet on pfSense.
-
in-line mode will develop the future? ;D
-
Yes, there are future plans for in-line mode. Changes are necessary in the pfSense kernel code to fully support this (primarily full support for netmap).
Bill
-
what pfsense version will be provided. ;D
Thank you -
Not yet known. That will be up to the pfSense core developers. I'm just a volunteer package maintainer for Snort and Suricata… :). It has been posted here and elsewhere this is a planned feature, but no specific version/timetable has been given.
Bill
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.