[Oisf-users] using suricata as IPS under openbsd
carlopmart
carlopmart at gmail.com
Sun Dec 1 11:33:20 UTC 2013
Hi all,
I am trying to install suricata as IPS under two OpenBSD carp'ed fws
to inspect http traffic only ...
Reviewing suricata docs, I have found how to do this using FreeBSD's
IPFW only.
My questions are:
- can I compile suricata under openbsd using "--enable-ipfw" option??
- To enable IPS mode under openbsd, this rule will be ok:
"pass in on $int_if inet proto tcp from $internal_net to
!<all_internal_nets> port http flags S/SA modulate state divert-to
127.0.0.1 port 8000" ??
Thanks.
--
CL Martinez
carlopmart {at} gmail {d0t} com
More information about the Oisf-users
mailing list