Re: Testing Snort-inline without any rules

[aravind babu <aravindforsnort () yahoo co in>]

 Hi Milo,
 
    Before starting snort-inline ping is working.I checked ip_forward in snort box also.It is set to 1.
 
Thanks,
Aravind.


Milo Velimirovic <milov () uwlax edu> wrote:
Two possibilities:

The IPs you've chosen are not routable - there is no reason to expect 
that computers using addresses from those two address blocks would be 
able to communicate without some sort of address translation going on 
in the device(s) connecting them.

Is the Snort box setup to do IP forwarding or as a router? (forgive my 
ignorance about inline snort configs.) If not this would also explain 
things.

Milo

On Jan 30, 2004, at 7:44 AM, aravind babu wrote:

> Hi all,
>  
>        I installed snort-inline with iptables support for libipq.It is 
> working properly.I commented all rules in snort_inline.conf file.My 
> setup is like this:
>  
>                            |                       |
> ----192.168.2.0------|Snort_inline box|----------10.1.10.0-------
>                            |                       |
>  
> In i ping , from the machine on 192. . .   network to the machine on 
> 10. . .  ping reply is not coming ? Why it happens inspite of no 
> rules?Any idea?
>  
> Thanks in advance,
> Aravind.
>
> Yahoo! India Mobile:Ringtones, Wallpapers, Picture Messages and 
> more.Downloadnow.

Yahoo! India Mobile: Ringtones, Wallpapers, Picture Messages and more.Download now.