Page 2 of 2 FirstFirst 12
Results 11 to 15 of 15
  1. #11
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    26,241

    Default

    Quote Originally Posted by jcoffin View Post
    None are set to block by default.
    As it should be!
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  2. #12
    Untangler
    Join Date
    Feb 2009
    Location
    Spain
    Posts
    75

    Default

    What's the aprox. eta of this release? I'm going to install a new machine and I'd like to use IPS,

  3. #13
    Untangle Junkie dmorris's Avatar
    Join Date
    Nov 2006
    Location
    San Carlos, CA
    Posts
    17,747

    Default

    The new IPS will remain in beta in v11.1 and likely replace the old IPS in v11.2
    Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  4. #14
    Untangle Ninja proactivens's Avatar
    Join Date
    Sep 2008
    Location
    Greensburg, Pa
    Posts
    2,372

    Default

    So will all the snort rules be effective. or does the uvm packet reconstruction prevent some types of rules from not detecting? I've got the beta installed and configured and I have been running some metasploit tests against a honeypot webserver behind Untangle. So far I have not triggered any detections for port scans, nmap4 scans, ect. I've just started testing and I am in no way saying that the IPS isn't working, I just want to be armed with the appropriate information as I start really getting involved with the testing.

    I've got a lot to learn about metasploit and the other tools in Kali linux. I have an Untangle setup at site A running as the border gateway with a web server running behind it with a default wordpress site and a Kali box running at site B. I am launching the exploits, attacks, ect from site b against the WAN of site A. So its more like a real world test and not a lab test setup.

    Anyway, any guidance would be appreciated.
    www.nexgenappliances.com
    Toll Free: 866-794-8879
    UNTANGLE STAR PARTNER
    Follow us at spiceworks!

  5. #15
    Untangle Junkie dmorris's Avatar
    Join Date
    Nov 2006
    Location
    San Carlos, CA
    Posts
    17,747

    Default

    Its regular snort. It runs outside the untangle-vm.

    Did you enable the port scan rules?
    If I enable PSNG_TCP_FILTERED_PORTSCAN and run "nmap -sS -p 1-10000 myIP" it fires frequently.
    Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

Page 2 of 2 FirstFirst 12

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2