Snort mailing list archives
Re: Not-ing out ports
From: James Lay <jlay () slave-tothe-box net>
Date: Mon, 13 May 2013 09:23:51 -0600
Good catch...too early, not even coffee ;) On 2013-05-13 09:06, Jason Wallace wrote:
On Mon, May 13, 2013 at 10:19 AM, Lay, James <james.lay () wincofoods com [8]> wrote:Guessing you’ll want the !25 on both ends since it’s bidirectional: alert tcp !25 any <> any !25Isnt that first !25 in the IP address field? Wouldnt it be... alert tcp any !25 <> any !25James
------------------------------------------------------------------------------ Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. This 200-page book is written by three acclaimed leaders in the field. The early access version is available now. Download your free book today! http://p.sf.net/sfu/neotech_d2d_may _______________________________________________ Snort-sigs mailing list Snort-sigs () lists sourceforge net https://lists.sourceforge.net/lists/listinfo/snort-sigs http://www.snort.org Please visit http://blog.snort.org for the latest news about Snort!
Current thread:
- Not-ing out ports John Wiltberger (May 13)
- Re: Not-ing out ports Lay, James (May 13)
- Re: Not-ing out ports Jason Wallace (May 13)
- Re: Not-ing out ports James Lay (May 13)
- Re: Not-ing out ports waldo kitty (May 13)
- Re: Not-ing out ports Jason Wallace (May 13)
- Re: Not-ing out ports Lay, James (May 13)