Bonjour Eric et merci de ta réponse !
Would it be possible for you to use the mangle table ? Something like: iptables -A FORWARD -t mangle -m mark ! --mark 1/1 \ -j NFQUEUE --queue-num 0 --queue-bypass If you have no accept rule in mangle table then adding this rule at the end will guarantee that all packet are seen by Suricata.
Very good idea to pass through the mangle table. I'm not using it. It does the job, all is running perfectly with this "hack".
Thanks again, Regards, -- Université de Nantes - Direction des Systèmes d'Information
begin:vcard fn:Yoann Juet n:Juet;Yoann org;quoted-printable:Direction des Syst=C3=A8mes d'Information adr;quoted-printable:BP 92208;;2 Rue de la Houssini=C3=A8re;Nantes Cedex 3;;44322;France email;internet:yoann.juet@xxxxxxxxxxxxxx tel;work:02.53.48.49.26 tel;fax:02.53.48.49.09 tel;cell:06.73.15.42.19 x-mozilla-html:FALSE version:2.1 end:vcard
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
