Michael Rash, Security Researcher

Software Release - fwsnort-0.5

The 0.5 release of fwsnort is ready for download. Here is an excerpt from the ChangeLog:
  • Added "-j REJECT --reject-with tcp-reset" for tcp sessions if the --ipt-block option is specified.
  • Added ability to download latest snort rules from
  • Added --no-ipt-jumps.
  • Added better checking for iptables build characteristics such as the LOG target and wether or not the ipv4options extension is compiled in.
  • Added config preservation code from psad in