Focus on IDS
Back to list
Aug 11 2009 05:38PM
Augusto Pereyra (aepereyra gmail com)
I' d like to share with all, this script made by me based on root0
script for ips instalation.
This script was tested on fedora 9 but it should work in fedora 10 too.
You need 3 network interfaces (One for management and two for the bridge)
When the script finish his execution you will have an IPS with the
-Easy Update of rules using oinkmaster.pl (just run sh /sbin/oink)
Blocking method (interact with IPtables):
-Reset Layer 2
How is connected?
-It works as an ethernet bridge using brctl in two interfaces to do it.
-This have a management interface.
-BASE (Logged in mysql)
-Webmin (only from localhost)
-SSH (only in management interface)
-Rule Configuration script (iptsamconf.sh) //this was downloaded from
It works greate protecting virtual machines
When you config the vmware interfaces for example put one of the NIC
of the bridge in VMNET7 and the other must be set as a bridged
In the next step you must connect all the vmware machines that you
want protect connected to VMNET7
Thats it. All machines in vmnet7 will pass throw the bridge to reach
the real network and the trafic will be analized by snort.
-Daily reports by mail
-Will detect attacks over SSL
-Rule Configuration interface
You can download it from
This is just the beta version.
Please send me comments, questions or bugs to aepereyra at gmail dot com
Securing Your Online Data Transfer with SSL.
A guide to understanding SSL certificates, how they operate and their application. By making use of an SSL certificate on your web server, you can securely collect sensitive information online, and increase business by giving your customers confidence that their transactions are safe.
[ reply ]
Copyright 2010, SecurityFocus