Hosting Provided By

Re: [Snort-inline-users] Re: attack redirection

From: Jed Haile <jhaile(at)nitrodata.com>
Date: Mon May 19 2003 - 10:55:04 EDT

Snat and dnat rule keywords have been on my to do list for inline snort for a long time. When used in a rule, snat or dnat would allow you to do source or destination routing (via iptables) when a rule is triggered. This would allow you to redirect interesting stuff to a honeypot.

Jed

On Sunday, May 18, 2003, at 06:42 PM, Lance Spitzner wrote:

> On Sun, 18 May 2003, Ray Stirbei wrote:

Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes: Security +, Check Point, Hacking & Assessment, Cisco Security, Wireless Security & more! Register Now! --UP TO 30% off classes in select cities-- http://www.securityfocus.com/Vigilar-security-basics

Received on Mon May 19 16:49:52 2003

This message: [ Message body ]
Next message: Wollenslegel, Troy (T.A.): "Remote windows "finger""
Previous message: SB CH: "about syncookies firewall?"
In reply to Lance Spitzner: "Re: [Snort-inline-users] Re: attack redirection"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:04:26 EDT