diff --git a/docs/FAQ.xml b/docs/FAQ.xml
index 161a9f937..2528f222c 100644
--- a/docs/FAQ.xml
+++ b/docs/FAQ.xml
@@ -2619,5 +2619,16 @@ loc                $FW                     ACCEPT           </programlisting>
       loc-&gt;$FW since those rules are redundant with the above
       policies.</para>
     </section>
+
+    <section id="faq87">
+      <title>(FAQ 87) Can I run Snort with Shorewall?</title>
+
+      <para><emphasis role="bold">Answer</emphasis>: Yes. In <emphasis>Network
+      Intrusion Detection System (NIDS) mode</emphasis>, Snort is libpcap
+      based (like tcpdump) so it doesn't interfere with Shorewall. We have had
+      reports that users have also been successful in using Snort in
+      <emphasis>inline</emphasis> more with Shorewall, but no HOWTO exists at
+      this time.</para>
+    </section>
   </section>
 </article>