Profile Details

Toggle Sidebar
Recent updates
  • Thanks for the response Dave. My ClearOS box is exposed to the Internet with a public IP and is operating in Gateway mode. Snort is detecting plenty of attacks, but SnortSam isn't doing anything about it.

    Dave Loper wrote:

    Does your ClearOS server have a public IP (not an RFC 1918 address)?

    If it uses a private schema, a lot of common attacks will be conducted against your frontend router instead of your ClearOS server. You would only see activity typically on open ports or if your defenses on your ISP head-end router fail.

    Also, make sure the services are running in the Prevention and Detection modules.

  • What was the solution for this? I'm having the same issue.....IDS is working fine, but the IPS/SnortSam never blocks anything. I'm using the IDS Signatures subscription.

    I have ClearOS 7.5 kernel 3.10.0-862.11.6.v7.x86_64

  • Thanks for the response Dave. My ClearOS box is exposed to the Internet with a public IP and is operating in Gateway mode. Snort is detecting plenty of attacks, but SnortSam isn't doing anything about it.

    Dave Loper wrote:

    Does your ClearOS server have a public IP (not an RFC 1918 address)?

    If it uses a private schema, a lot of common attacks will be conducted against your frontend router instead of your ClearOS server. You would only see activity typically on open ports or if your defenses on your ISP head-end router fail.

    Also, make sure the services are running in the Prevention and Detection modules.

  • What was the solution for this? I'm having the same issue...the IDS is working fine but the IPS never blocks anything. I have the IDS Signature subscription.

    I have ClearOS 7.5 kernel version 3.10.0-862.11.6.v7.x86_64.

  • What was the solution for this? I'm having the same issue.....IDS is working fine, but the IPS/SnortSam never blocks anything. I'm using the IDS Signatures subscription.

    I have ClearOS 7.5 kernel 3.10.0-862.11.6.v7.x86_64

  • Mel Lusk
    Mel Lusk updated their profile