webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-28 11:43:25 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fixed snort compile options and ipv6 config options

Browse Source
This commit is contained in:
Christian Schmidt
2011-03-14 20:04:16 +01:00
parent c07e938edb
commit 14820894ad
2 changed files with 8 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
config/snort/snort.conf
View File

@@ -173,8 +173,6 @@ dynamicengine /usr/lib/snort_dynamicengine/libsf_engine.so
preprocessor normalize_ip4
preprocessor normalize_tcp: ips ecn stream
preprocessor normalize_icmp4
preprocessor normalize_ip6
preprocessor normalize_icmp6
# Target-based IP defragmentation. For more inforation, see README.frag3
preprocessor frag3_global: max_frags 65536
@@ -287,7 +285,7 @@ preprocessor ftp_telnet_protocol: ftp client default \
telnet_cmds yes
# SMTP normalization and anomaly detection. For more information, see README.SMTP
reprocessor smtp: ports { 25 465 587 691 } \
preprocessor smtp: ports { 25 465 587 691 } \
inspection_type stateful \
enable_mime_decoding \
max_mime_depth 20480 \
@@ -311,7 +309,7 @@ reprocessor smtp: ports { 25 465 587 691 } \
xlink2state { enabled }
# Portscan detection. For more information, see README.sfportscan
preprocessor sfportscan: proto { all } memcap { 10000000 } sense_level { medium }
preprocessor sfportscan: proto { all } memcap { 10000000 } sense_level { medium }
# ARP spoof detection. For more information, see the Snort Manual - Configuring Snort - Preprocessors - ARP Spoof Preprocessor
# preprocessor arpspoof