[Oisf-users] having NFQUEUE without a suricata instance running blocks all connections
James Moe
jimoe at sohnen-moe.com
Wed Aug 30 20:40:49 UTC 2017
On 08/29/2017 02:13 PM, Jeff Dyke wrote:
> https://home.regit.org/netfilter-en/using-nfqueue-and-libnetfilter_queue/
>
> You can add |--queue-bypass|. I'll request that the documentation is
> updated. I'm not out of the woods, but past this issue.
>
In opensuse 42.2 (linux 4.4.79-18.26-default x86_64) the iptables
manual does not show "--queue-bypass" as an option.
Is the option undocumented, hidden, or unsupported? Or does it require
a custom build of iptables?
--
James Moe
moe dot james at sohnen-moe dot com
520.743.3936
Think.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20170830/a5f2c0ce/attachment-0002.sig>
More information about the Oisf-users
mailing list