[Oisf-users] Suricata AF_PACKET 4 interfaces 2 subnets problem.
Rob MacGregor
rob.macgregor at gmail.com
Wed Feb 10 14:28:42 UTC 2016
On Wed, Feb 10, 2016 at 10:39 AM Jose Carlos Álvarez <jcalvarezvg at gmail.com>
wrote:
> Hi all:
>
> I'm testing suricata 2.1 Beta 4 on a server with 4 RJ45 interfaces;
> Suricata is configured in AF_PACKET IPS mode interfaces eth1-eth2 (pair 1)
> and eth3-eth4 (pair 2)
>
> I am filtering simultaneously a subnet in pair 1 and other subnet in pair
> 2.
>
> Traffic on pair 1 goes fine, but in pair 2 IMAP traffic doesn't goes
> through.
>
> I have revised the logs and apparently no rules are dropping IMAP traffic.
> Any hints?
>
Why a beta release? Why not either the new stable 3.0 or the old stable
2.0.11?
--
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20160210/e38cc7c3/attachment-0002.html>
More information about the Oisf-users
mailing list