[Oisf-users] simple question for bridging IPS (inline)
Morgan Cox
morgancoxuk at gmail.com
Thu Jul 22 16:28:54 UTC 2010
Hi.
I am setting up a bridging IPS .
I have one simple question.
I want to allow all traffic through the bridge - but get suricata to 'check'
traffic.
Actually I have 2 questions:-
1 . Do I need to use NFQUEUE or can I just use QUEUE for Iptables ?
2.
Is this acceptable rules (for allowing all traffic)
iptables -A FORWARD -j QUEUE
iptables -A INPUT -j QUEUE
iptables -A OUTPUT -j QUEUE
Or should I use
iptables -A INPUT -j NFQUEUE --queue-num 0
iptables -A FORWARD -j NFQUEUE --queue-num 0
iptables -A OUTPUT -j NFQUEUE --queue-num 0
cheers
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20100722/4e8fc76a/attachment-0002.html>
More information about the Oisf-users
mailing list