On 03/08/2010 19:01, m wrote:
I have used both Snort and Suricata inline on my firewall. With snort I use ip_queue, and with Suricata I use nf_queue. Both seem to function in the same manner. example: iptables -t raw -I PREROUTING -j QUEUE or iptables -t raw -I PREROUTING -j NFQUEUE 1
Have you tried in the mangle table? -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
