[Oisf-users] I did the installation of suricata as an IPS
Peter Manev
petermanev at gmail.com
Thu Jun 13 18:53:09 UTC 2013
On Thu, Jun 13, 2013 at 8:30 PM, mouna amani
<amani.smiai.insat at gmail.com> wrote:
> and I am using copy-mode: ips
> so I should see packets being dropped but all attacks are successful??
>
>
>
> On Thu, Jun 13, 2013 at 8:16 PM, mouna amani <amani.smiai.insat at gmail.com>
> wrote:
>>
>> I don't get destination host unreachable ping is working .The IPS is
>> working in AF_packet mode
>> But the IPS is not blocking the attacks at all
>> I am using emerging-rules that I downloaded from the site
>> why my ips is not blocking the attacks ???that is very serious issue
>>
Have you made you rules to explicitly drop the unwanted traffic?
--
Regards,
Peter Manev
More information about the Oisf-users
mailing list