Snort mailing list archives
Blocking attacking IP address for some time using Snort and PIX
From: kanwal jeet <jeet_kanwal () yahoo com>
Date: Thu, 2 Oct 2003 16:49:08 -0700 (PDT)
Hi Everybody, I have implemented snort and it is working fine. The problem i have is that it is not able to block the attacking IP address. It would just log it in mysql. I have Pix firewall and i want IDS to instruct the PIX firewall to drop all traffic coming from the source IP of the attacker and then remove the ban after a period of time has expired. Is it possible with snort ? i know it is possible with Cisco IDS. Can i accomplish the same with Snort ? Thanks in advance. Kanwal --------------------------------- Do you Yahoo!? The New Yahoo! Shopping - with improved product search
Current thread:
- Blocking attacking IP address for some time using Snort and PIX kanwal jeet (Oct 02)
- Re: Blocking attacking IP address for some time using Snort and PIX Matt Kettler (Oct 02)
- Re: Blocking attacking IP address for some time using Snort and PIX Frank Knobbe (Oct 04)
- Re: Blocking attacking IP address for some time using Snort and PIX kanwal jeet (Oct 02)