Snort mailing list archives
Re: query for snort signature writing using if condition
From: wkitty42 () windstream net
Date: Sun, 11 Feb 2018 13:00:30 -0500
On 02/11/2018 12:21 PM, Décomaï Lambano via Snort-users wrote:
Hi all,Looking for how to configure pfsense 2.3.4 and pfsense 2.4.2 in order to block youtube videos, streaming videos, facebook and other dangerous website with squid, snort and suricana. Is there any computer spécification to respect in order to install pfsense for a huge company network (500 to 1000 users).
1. please don't hijack someone else's thread. 2. use your DNS server for these types of blocks. that's what it is there for.here's an example using DNSMASQ... no clue what pfsense uses for its DNS stuffings...
----->8 snip dnsmasq.conf snip 8<-----
# block these domains with NXDOMAIN
server=/example.com/
server=/facebook.com/
server=/fbcdn.net/
server=/fbcdn.com/
server=/facebook.net/
----->8 snip dnsmasq.conf snip 8<-----
--
NOTE: No off-list assistance is given without prior approval.
*Please keep mailing list traffic on the list unless*
*a signed and pre-paid contract is in effect with us.*
_______________________________________________
Snort-users mailing list
Snort-users () lists snort org
Go to this URL to change user options or unsubscribe:
https://lists.snort.org/mailman/listinfo/snort-users
Please visit http://blog.snort.org to stay current on all the latest Snort news!
Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette
Current thread:
- query for snort signature writing using if condition Ngnr Pu via Snort-users (Feb 11)
- Re: query for snort signature writing using if condition Al Lewis (allewi) via Snort-users (Feb 11)
- Re: query for snort signature writing using if condition Décomaï Lambano via Snort-users (Feb 11)
- Re: query for snort signature writing using if condition wkitty42 (Feb 11)
- Re: query for snort signature writing using if condition B M via Snort-users (Feb 12)
- Re: query for snort signature writing using if condition Joel Esler (jesler) via Snort-users (Feb 12)
- Re: query for snort signature writing using if condition Décomaï Lambano via Snort-users (Feb 11)
- Re: query for snort signature writing using if condition Al Lewis (allewi) via Snort-users (Feb 11)