PNX2015 VLD模块寄存器配置与错误处理实战指南
2026/6/21 4:40:37
深入了解 fwsnort:规则配置、命令选项与攻击检测实战
1. fwsnort 规则示例
在网络安全防护中,fwsnort 是一款强大的工具,它能将 Snort 规则转化为 iptables 规则。以下是两个具体的规则示例:
$IPTABLES -A FWSNORT_FORWARD_ESTAB -s 192.168.10.0/24 -p tcp --sport 80 -m string --string "Command completed" --algo bm -m comment --comment "sid:494; msg: ATTACK-RESPONSES command completed; classtype: bad-unknown; reference: bugtraq,1806; rev: 10; FWS:1.0;" -j LOG --log-ip-options --log-tcp-options --log-prefix "[2] SID494 ESTAB " $IPTABLES -A FWSNORT_OUTPUT_ESTAB -p tcp --sport 80 -m string --string "Command completed" --algo bm -m comment --comment "sid:494; msg: ATTACK-RESPONSES command completed; classtype: bad-unknown; reference: bugtraq,1806; rev: 10; FWS:1.0;" -j LOG --log-ip-options --log-tcp-options