mirror of
https://gitlab.com/shorewall/code.git
synced 2025-01-10 15:48:13 +01:00
Add FAQ about Snort
Signed-off-by: Tom Eastep <teastep@shorewall.net>
This commit is contained in:
Tom Eastep
parent
d5cc302ad9
commit
c39f3c12c9
11
docs/FAQ.xml
11
docs/FAQ.xml
@ -2619,5 +2619,16 @@ loc $FW ACCEPT </programlisting>
|
||||
loc->$FW since those rules are redundant with the above
|
||||
policies.</para>
|
||||
</section>
|
||||
|
||||
<section id="faq87">
|
||||
<title>(FAQ 87) Can I run Snort with Shorewall?</title>
|
||||
|
||||
<para><emphasis role="bold">Answer</emphasis>: Yes. In <emphasis>Network
|
||||
Intrusion Detection System (NIDS) mode</emphasis>, Snort is libpcap
|
||||
based (like tcpdump) so it doesn't interfere with Shorewall. We have had
|
||||
reports that users have also been successful in using Snort in
|
||||
<emphasis>inline</emphasis> more with Shorewall, but no HOWTO exists at
|
||||
this time.</para>
|
||||
</section>
|
||||
</section>
|
||||
</article>
|
||||
|
||||
Loading…
Reference in New Issue
Block a user