Snort mailing list archives
Re: Compiling snort for CheckPoint Firewall-1 support
From: Frank Knobbe <frank () knobbe us>
Date: Thu, 11 May 2006 14:30:19 -0500
On Thu, 2006-05-11 at 17:19 +0200, carlopmart wrote:
i would like to test snort 2.4.4 release with CheckPoint fw-1 (NGR55 and NGX) and in-line (snort-inline.sf.net) support. I have used snortsam last months, but I need a real IPS now thath sends commands to my firewalls and blocks traffic. How can I compile snort for fw1 support???
Uhm... that *IS* what Snortsam does. It sends commands to your firewall to block traffic. On Thu, 2006-05-11 at 14:29 -0400, Paul Melson wrote:
You can't build Snort with FW-1 specific support like you can with RealSecure or other commercial products that have OPSEC(tm) support.
Snortsam provides that OPSEC support, but not straight from Snort. It is interfaced by Snortsam (Snort->Snortsam->FW-1). Regards, Frank -- It is said that the Internet is a public utility. As such, it is best compared to a sewer. A big, fat pipe with a bunch of crap sloshing against your ports.
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- Compiling snort for CheckPoint Firewall-1 support carlopmart (May 11)
- RE: Compiling snort for CheckPoint Firewall-1 support Paul Melson (May 11)
- Re: Compiling snort for CheckPoint Firewall-1 support Frank Knobbe (May 11)
- Re: Compiling snort for CheckPoint Firewall-1 support carlopmart (May 16)
- Re: Compiling snort for CheckPoint Firewall-1 support Frank Knobbe (May 12)
- Re: Compiling snort for CheckPoint Firewall-1 support carlopmart (May 16)
- Re: Compiling snort for CheckPoint Firewall-1 support Nigel Houghton (May 16)
- Re: Compiling snort for CheckPoint Firewall-1 support Will Metcalf (May 16)
- Re: Compiling snort for CheckPoint Firewall-1 support carlopmart (May 16)
- <Possible follow-ups>
- RE: Compiling snort for CheckPoint Firewall-1 support Briggs, Bruce (May 16)