Snort mailing list archives
Re: fail-open nic and snort?
From: Frank Knobbe <frank () knobbe us>
Date: Sun, 05 Mar 2006 18:09:47 -0600
On Sat, 2006-03-04 at 17:54 -0500, Crayola wrote:
I would like to build a snort based IPS solution but I cant seem to find a vendor who sells fail open nics. Since snort would be inline, I cant have it blocking my network connection if the system fails, loses power, etc. I checked out bypass switches from Netoptics but I would like something that can be installed directly in the PC. A PCI nic basically. Any ideas?
You can easily built those yourself. It's nothing else but a handful of Reed Relays that, when power is off, cause a cross-connect between the two external plugs, and when power is on, provide a normal feed to the jack. A couple relays, two RJ-45 jacks, to RJ-45 plugs and a small universal circuit board is all you need (besides some skillz handling a solder iron...). Cheers, Frank -- It is said that the Internet is a public utility. As such, it is best compared to a sewer. A big, fat pipe with a bunch of crap sloshing against your ports.
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- fail-open nic and snort? Crayola (Mar 05)
- Re: fail-open nic and snort? Gulfie (Mar 05)
- Re: fail-open nic and snort? Frank Knobbe (Mar 05)