Gentoo Forums :: View topic - ADSL/PPPoE and OpenSwan with Snort

ADSL/PPPoE and OpenSwan with Snort

View unanswered posts
View posts from last 24 hours

Gentoo Forums Forum Index

Networking & Security

View previous topic :: View next topic

Author

Message

tomatopi
Tux's lil' helper

Joined: 18 Sep 2005
Posts: 130
Location: Ottawa

Posted: Wed Feb 08, 2006 3:17 pm Post subject: ADSL/PPPoE and OpenSwan with Snort

I use OpenSwan/IPSec for VPN and Snort for intrusion detection on my ADSL connection. However, I notice that if the ADSL link goes down and comes back up ppp0 is destroyed and then re-created. This breaks both the VPN connection and crashes Snort. I put the following lines at the end of my /etc/ppp/if-up file:

Code:

/etc/init.d/ipsec restart
pid_length=`pidof -x snort | awk '{print length($0)}'`
if [ "$pid_length" != "0" ]
then
/etc/init.d/snort restart
else
/etc/init.d/snort zap
/etc/init.d/snort start
fi

That seems to work, but I was wondering if there is a better or more elegant solution. I added the if/else because sometimes snort would be able shutdown cleanly, but sometimes snort would die and I needed a zap to get it to restart.

Thanks

Peter

Display posts from previous:

	Gentoo Forums Forum Index Networking & Security	All times are GMT
Page 1 of 1

Jump to:

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy