-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Am Tue, 3 Jan 2012 10:57:16 -0500 schrieb "Bentley, Dain" <dbent...@nas.edu>: > I've been looking around for a good tutorial on implementing snort > with PF and everything I see is old, does anyone know of or have > implemented a solution using an IDS/IPS with PF on the same box? If > possible I'd like snort of some other IDS inspect packets and have pf > drop them based on the fact they match certain signatures. Thanks in > advance. > Hi Dain, have you seen this before: http://www.kernel-panic.it/openbsd/nagios/ It's not SNORT but Nagios, but Daniele Mazzocchio did an awful good job in explaining why and how he set up his system. Though it's still related to OBSD 4.6 the principles are still true. Kind regards, STEFAN iEYEARECAAYFAk8DW0oACgkQdClntJwm8dCOxgCdFUNvhzV57ZA5dwECrKEUEVZa HZEAoJcWQeXwvsPM7bEuUZk0t+VeebqF =S6AJ -----END PGP SIGNATURE-----