I normally only run snort when I think I've got something going on
*inside* the network. I used to pick and choose just a couple of rule
sets just to see how dirty the other side of my firewall was. It was
fascinating at first.
Now when I have some sort of hint that there might be a bug on the
ins
I run snort on a net 5501 (500 MHz geode 512 mega ram). I run most of
the standard rules plus a good number of the Emerging Threats rules,
and I can run an inside and outside instance on a full cable pipe (12
mbits down). And net5501 NICs are interrupt hogs. An atom should be
fine. I run
On Fri, Feb 26, 2010 at 11:21:52AM -0500, Jim Pingle wrote:
> On 2/26/2010 10:26 AM, Eugen Leitl wrote:
> > There's no way to get snort to run on an ALIX, am I correct?
>
> It should work but you must be _very_ frugal in choosing the (few) rule
> sets you want to load. Also setting it to lowmem is
On 2/26/2010 10:26 AM, Eugen Leitl wrote:
> There's no way to get snort to run on an ALIX, am I correct?
It should work but you must be _very_ frugal in choosing the (few) rule
sets you want to load. Also setting it to lowmem is a must.
Jim
---
Wow, now I know why the snort mascot is a pig. After fixing all the
rule errors via http://blog.stellartech.us/?tag=pfsense
(I had to disable the categories dns.rules, netbios.rules,
smtp.rules and sql.rules) it still eats up 100% and eventually
expires
Warning: flowbits key 'email.pdf' is set bu
On Fri, Feb 26, 2010 at 03:13:46PM +0100, Aarno Aukia wrote:
> > Routing performance ok? Does the IPMI really allow KVM
> > and remote media (i.e. remote reinstalls) without buying extra
> > licenses?
>
> I'm sorry, I mixed it up with the 5015A-H, which doesn't have IPMI.
Yes, I have three of th
I've seen on the forums quite a few people have been having
snort rules issues like
Feb 26 15:22:14 pfsense snort[9427]: FATAL ERROR: Warning:
/usr/local/etc/snort/rules/smtp.rules(62) => Unknown keyword '
detection_filter' in rule!
Is that fixed in snort-dev? Any known workarounds?
--
Eugen
Hello,
On Fri, Feb 26, 2010 at 12:45, Eugen Leitl wrote:
> On Fri, Feb 26, 2010 at 12:03:59PM +0100, Aarno Aukia wrote:
>> We have them, we like them ;) They are the next bigger appliances
>> after ALIX for us.
>
> No problems whatsoever? Ventilation adequate, or needs more fans?
> Do you use a r
On Fri, Feb 26, 2010 at 12:03:59PM +0100, Aarno Aukia wrote:
> We have them, we like them ;) They are the next bigger appliances
> after ALIX for us.
No problems whatsoever? Ventilation adequate, or needs more fans?
Do you use a riser and extra NICs?
Routing performance ok? Does the IPMI really
We have them, we like them ;) They are the next bigger appliances
after ALIX for us.
-Aarno
On Fri, Feb 26, 2010 at 10:21, Eugen Leitl wrote:
>
> Just found http://www.supermicro.com/products/system/1U/5015/SYS-5015A-PHF.cfm
>
> Key Features
> 1. Intel® Atom™ D510
> (DMI)
> 2. Up to 4GB singl
Just found http://www.supermicro.com/products/system/1U/5015/SYS-5015A-PHF.cfm
Key Features
1. Intel® Atom™ D510
(DMI)
2. Up to 4GB single channel unbuffered,
non-ECC DDR2 667MHz SO-DIMM
3. 1 (x4) PCI-E (in x16 slot)
4. 2x Intel 82574L Gigabit LAN
5. Onboard GMA3150 Video
6. 1x 3.5" or Up
11 matches
Mail list logo
