Hi folks, is there a way to audit multiple unusual port utilization with a native realsecure rules (user defined rules or anything else) ? Yes, I can use Trons engine on that way.... : ex.: alert ip any any -> any !20:23 but what else if I can't trust 100% that "not supported" engine ?
Thank you :) Steve Royer _______________________________________________ ISSForum mailing list [EMAIL PROTECTED] TO UNSUBSCRIBE OR CHANGE YOUR SUBSCRIPTION, go to https://atla-mm1.iss.net/mailman/listinfo/issforum To contact the ISSForum Moderator, send email to [EMAIL PROTECTED] The ISSForum mailing list is hosted and managed by Internet Security Systems, 6303 Barfield Road, Atlanta, Georgia, USA 30328.
