OSDN -- 开发和下载开源软件
简体中文翻译状态 translation status for zh

RSS
Download List

项目描述

fwsnort translates snort rules into an equivalent
iptables ruleset. By making use of the iptables
string match module, fwsnort can detect
application layer signatures which exist in many
snort rules. fwsnort adds a --hex-string option to
iptables, which allows snort rules that contain
hex characters to be input directly into iptables
rulesets without modification. In addition,
fwsnort makes use of the IPTables::Parse Perl
module in order to (optionally) restrict the snort
rule translation to only those rules that specify
traffic that could potentially be allowed through
an existing iptables policy.

系统要求

System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2012-12-22 13:27
1.6.3

此版本添加新的全面的测试套件,速度更快的 iptables/ip6tables 功能测试例程,并修复为十六进制字符串编码为一些 Snort 与语法破坏的字符相匹配的内容。
This release adds a new comprehensive test suite,
a faster iptables/ip6tables capabilities testing routine,
and fixes for hex string encoding for some Snort content matches with syntax-busting characters.

2011-09-03 07:04
1.6.1

一个为修正“无法加载目标”的错误在一些Linux系统上看到。一个解释模式在Snort规则的顺序与相对模式匹配的修正。已更新到最新的新兴威胁的规则集。
A bugfix for the 'Couldn't load target' error seen on some Linux systems. A bugfix for interpreting pattern ordering in Snort rules with relative pattern matches. Updated to the latest Emerging Threats rule set.

2011-07-29 15:04
1.6

Snort的fast_pattern支持和iptables的多端口匹配支持。 - 队列和 - NFQUEUE模式得到了加强。增加了连接跟踪的conntrack模块支持。增加了通过iptables的字符串匹配扩展 - icase参数不区分大小写的模式匹配。一个是固定的几个小错误。
标签: Stable
Snort fast_pattern support and iptables multiport match support were added. The --QUEUE and --NFQUEUE modes were enhanced. Support was added for the conntrack module for connection tracking. Case-insensitive pattern matching was added via the --icase argument to the iptables string match extension. A couple of minor bugs were fixed.

2010-01-09 17:08
1.1

为ip6tables支持是增加些fwsnort Snort规则可以应用到IPv6流量。能够创建Perl命令,印刷应用层数据相匹配的Snort规则是通过增加一个新的“ -包括:perl的,就会触发”的论调。更好的配置变量支持在fwsnort.conf文件添加。
Support for ip6tables was added so that fwsnort can apply Snort rules to IPv6 traffic. The ability to create Perl commands that print application layer data that matches Snort rules was added via a new "--include-perl-triggers" argument. Better support for configuration variables within the fwsnort.conf file was added.

2009-05-31 17:40
1.0.6

阿错误已修复,让fwsnort正确翻译Snort的规则,有“内容”分号内嵌逃出领域(如“\;”)。这使得fwsnort翻译约58新兴威胁的其他规则的规则集。阿错误已修复,让大小写匹配与正常-包括:重新无壳和-排除重新无壳的论点。该代码已更新到最新的完整的规则设置,从新兴的威胁。在-嗤之以鼻,rfile理由是增加些具体的Snort规则文件(或由逗号分隔的文件列表)被解析。
A bug was fixed to allow fwsnort to properly translate snort rules that have "content" fields with embedded escaped semicolons (e.g. "\;"). This allows fwsnort to translate about 58 additional rules from the Emerging Threats rule set. A bug was fixed to allow case insensitive matches to work properly with the --include-re-caseless and --exclude re-caseless arguments. The code was updated to the latest complete rule set from Emerging Threats. The --snort-rfile argument was added so that a specific Snort rules file (or list of files separated by commas) is parsed.

Project Resources

Project Page 下载: bzip2 下载: 变更日志 首页 下载: List 下载: Mirror 下载: RPM 下载: TGZ