[Oisf-users] Empty http.log file
Victor Julien
victor at inliniac.net
Tue Jul 10 10:55:02 EDT 2012
On 07/10/2012 04:43 PM, kay wrote:
> Dear Victor,
>
> When I set 1/1 mark for repeat mode whole traffic comes through the
> "iptables -A INPUT -p tcp -m mark --mark 0x1/0x1 -m tcp --dport 80 -j
> ACCEPT" rule. That does not make any sense for "mark" feature...
I think the first problem you need to solve is that of getting packets
into Suricata. Then move on from there. It's clear that because of the
warnings you got the rules or suricata settings were misconfigured.
--
---------------------------------------------
Victor Julien
http://www.inliniac.net/
PGP: http://www.inliniac.net/victorjulien.asc
---------------------------------------------
More information about the Oisf-users
mailing list