Mohamed Berzig wrote:
Hello, I would like to use snort_inline with PF, exists an equivalent of libipq in iptables. Greetings.
I'm not sure about native OpenBSD support but in FreeBSD even with divert support compiled in, inlining function cannot work because the proper BSD divert socket functionality isn't available in Snort.
Marty Roesch did *somehow* hinted about it here, http://taosecurity.blogspot.com/2005/05/is-anyone-successfully-running-inline.html
-- Thank you for your time, Ihsan Junaidi Ibrahim, http://ihsan.synthexp.net
