Snort mailing list archives

Blocking attacking IP address for some time using Snort and PIX

From: kanwal jeet <jeet_kanwal () yahoo com>
Date: Thu, 2 Oct 2003 16:49:08 -0700 (PDT)

Hi Everybody,
 
I have implemented snort and it is working fine. The problem i have is that it is not able to block the attacking IP 
address. It would just log it in mysql.
 
I have Pix firewall and i want IDS to instruct the PIX firewall to drop all traffic coming from the source IP of the 
attacker and then remove the ban after a period of time has expired.
 
Is it possible with snort ?  i know it is possible with Cisco IDS.
Can i accomplish the same with Snort ?
 
Thanks in advance.
Kanwal


---------------------------------
Do you Yahoo!?
The New Yahoo! Shopping - with improved product search

Current thread:

Blocking attacking IP address for some time using Snort and PIX kanwal jeet (Oct 02)
- Re: Blocking attacking IP address for some time using Snort and PIX Matt Kettler (Oct 02)
- Re: Blocking attacking IP address for some time using Snort and PIX Frank Knobbe (Oct 04)
  - Re: Blocking attacking IP address for some time using Snort and PIX kanwal jeet (Oct 02)