Is this possible? I've just installed snort+mysql+acid on my openbsd 3.3 So my question is basically if it's possible to get snort to inspect packets Thanks! /foo
er++ and I would like to actually get som events triggered in my logs, pf
is simply eating up all the malicious packets before i get to log and view
them in my snort+mysql+acid combo. (I know the whole idea of "one server x
hundred services" aren't in line with the basic philosophy of OpenBSD, but
I'm mainly doing this for educational purposes (and fun).
before pf, or should I just forget it and shop around for a P90 to use as a
sensor in front/parallel of the firewall?
So my question is basically if it's possible to get snort to inspect packets