I've installed snort 2.4.3 on a 6.0 machine and have it logging
successfully to a MySQL database on another machine in my home network.
I also have BASE installed on that machine to view the alerts.
Now I'd like to move forward and do things like block an IP address for
1 hour that has
I am pretty sure there are modules for PF(so i guess IPFW2 should have
also).
Try google and the snort mail list
On 2/14/06, Drew Tomlinson [EMAIL PROTECTED] wrote:
I've installed snort 2.4.3 on a 6.0 machine and have it logging
successfully to a MySQL database on another machine in my home