-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sunday 28 July 2002 09:21, Russell Hires wrote:
> Now, the fun part...
>
> > var HOME_NET $eth0_ADDRESS
> >
> > for whichever interface is the external interface on your firewall, or:
> >
> > var HOME_NET [192.168.1.0/24]
> >
> > where the CIDR is the address range of the network that you consider
> > "yours".
>
> I'm confused by these instructions. For me, my home network is eth1 (ip =
> 192.168.1.2), and the rest of the internet is on ppp0 (aka external
> interface), which is what I get assigned because of my dsl connection (ip =
> 4.62.115.xx). So here I want to set the eth1 address, or the ppp0 address?
>
You can also do something like this:
var HOME_NET [192.168.1.0/24,$ppp0_ADDRESS]
But then you need to restart snort everytime to bring up ppp0.
HTH!
- --
Redundancy? You can say that again!
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE9RBA+ER3MuHUncBsRApd+AJ9Cs11evYvBXZjHPdwGJd8Iaiyg2wCfY4se
KQ7gS3E1K5bqBwT/lclMmUc=
=9tVK
-----END PGP SIGNATURE-----
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 14:46:02 EDT