Snort mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Snort Filtering

From: "L. Christopher Luther" <CLuther () Xybernaut com>
Date: Tue, 29 Apr 2003 18:02:36 -0400
Try BPF rules on the Snort command line (see the tcpdump man page for BPF
format).  

Cheers! 


-----Original Message-----
From: Michale [mailto:michale () pln cc]
Sent: Tuesday, April 29, 2003 5:26 PM
To: snort-users () lists sourceforge net
Subject: [Snort-users] Snort Filtering


Hay snort-users,

  I am really anal retentive about my Linux Box..

  And worse yet, a rookie to snort rules...
  
  I know how to make SNORT log ALL activity..

  But can I filter out the logging based on IP or Domain Name..

  IE have it NOT log abc.com or 111.222.123.432

  Thanx

--


Best regards,
 Michale                          mailto:michale () pln cc




-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users


-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: