| Search Site |
| Search Rules |
| Account |
| not registered? |
| can't login? |
| user preferences |
 |
 |
|
|||||||||||||||||||
Next: New STREAM4 Options for Up: Inline Mode Previous: Inline Mode Contents
Snort Inline Rule Application Order
The current rule application order is:
->activation->dynamic->drop->sdrop->reject->alert->pass->logThis will ensure that a drop rule has precedence over an alert or log rule. You can use the -o flag to change the rule application order to:
->activation->dynamic->pass->drop->sdrop->reject->alert->log
Steven Sturges 2007-10-04
| Terms of Use | Privacy Policy | forum archives | site feedback ©2009 Snort and Sourcefire are registered trademarks of Sourcefire, Inc. All rights reserved. |