# Look through the archives. You can either use a tun0 device like
# fragraoute or block+log the packets in PF and use bpf to read them off
# of the pflog0 interface.
#
# .mike
What's the deal behind this tun0 / fragroute? Sorry, I couldn't understand.
Well... certainly I could do something wit
Patch fixed it.
Now another question, before patch synproxy worked, kinda, with a
bridge. It would take 3-5 seconds to open the session, but it was
blocking a synflood with 20% CPU used by interrupts (P3 1Ghz). It
only "worked" with a bridge though. States were limited to 250,000
and it would u
Marcelo de Souza wrote:
> Hello all,
>
> I'm planning to implement some kind of network IPS (a preemptive network IDS)
> and, after some days of research, I've discovered that there are already good
> solutions for this.
>
> The biggest example is using snort-inline in Linux (using iptables QUEU
Hello all,
I'm planning to implement some kind of network IPS (a preemptive network IDS)
and, after some days of research, I've discovered that there are already good
solutions for this.
The biggest example is using snort-inline in Linux (using iptables QUEUE) or
FreeBSD (with ipfw divert - exce
On Wed, Jun 30, 2004 at 04:47:00PM -0500, Kevin wrote:
> Unable to get synproxy working using snapshot dated June 28,
> previously was using one from about 2 weeks ago which also did not
> work.
Can you try the patch in
http://www.benzedrine.cx/pf/msg04725.html
and tell me whether it affects/
Hi,
considering new MP support in OpenBSD, does it somehow help for high-speed
firewalling ?
Thanks
Petr R.
