Article Figure 1 Figure 2 Figure 3 Figure 4 apr2004.tar

Figure 1 Snort rules translated into iptables rules

$ fwsnort --snort-rdir /etc/fwsnort/snort_rules

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
    Snort Rules File          Success   Fail      Ipt_apply Total

 .. attack-responses.rules    13        5         0         18
 .. backdoor.rules            51        5         0         56
 .. bad-traffic.rules         6         4         1         10

<remaining rules files removed for brevity>

                              =======================================
                     Totals:  1415      408       61        1823

 .. Generated iptables rules for 1415 out of 1823 signatures: 77.62%
 .. Found 61 applicable snort rules to your current iptables
    policy.

 .. Logfile:         /var/log/fwsnort.log
 .. Iptables script: /etc/fwsnort/fwsnort.sh
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=