通过使用Regular Expression lookup操作器,可以找到与所选规则文件中包含的表达式匹配的文本部分。
With the Regular expression Lookup operator you can find the text sections that match the expressions contained in the selected rule files.
向下滚动已注册用户部分,可以找到一组匹配您所使用的 Snort 版本的规则集;图 1 显示了这部分 Snort 站点。
Scroll down to the registered user section, where you can get a set of rules to match the release of Snort you're using; this portion of the Snort site is shown in Figure 1.
iptables 命令的可选 match 部分指定信息包与规则匹配所应具有的特征(如源和目的地地址、协议等)。
The optional match section of the iptables command specifies the characteristics that a packet should have to match the rule, such as source and destination address, protocol, etc.
应用推荐