[Oisf-users] Using AfPacket under suricata 1.1
Victor Julien
victor at inliniac.net
Mon Nov 28 09:38:00 UTC 2011
On 11/28/2011 10:31 AM, carlopmart wrote:
>
> Hi all,
>
> I am reading docs about suricata and afpacket and I haven't very clear
> how it works. Is it the same as afpacket in snort??
af-packet is a way of getting packets from the Linux kernel, so it's the
same facility. Our implementation has nothing to do with Snort's though.
> Can I setup a suricata
> IPS using afpacket instead of NFQ like in snort?
No, you cannot yet.
--
---------------------------------------------
Victor Julien
http://www.inliniac.net/
PGP: http://www.inliniac.net/victorjulien.asc
---------------------------------------------
More information about the Oisf-users
mailing list