redBorder Snort

redBorder's Snort with some improvements:

Creating a parent pid (ppid) file, in order to be able to track pf_ring statistics
Alert Threshold limits / suppressions can now be tracked by src and dst at the same time
Added "dont_rotate_on_packets" unified2 option, in order to avoid lonely packets on barnyard
u2boat is able to filter by gid, sid, timestamp range, and output as text
Created snort_iplist, in order to be able to reload iplist entries via control socket
shared memory name now include redborder instance group id
Integrated geo-ip in reputation preprocessor, so you can block or bypass traffic depending on src/dst geographic location

Based on Cisco (c) Snort.

Name		Name	Last commit message	Last commit date
Latest commit History 36 Commits
doc		doc
etc		etc
m4		m4
preproc_rules		preproc_rules
rpm		rpm
src		src
templates		templates
tools		tools
.gitignore		.gitignore
COPYING		COPYING
ChangeLog		ChangeLog
LICENSE		LICENSE
Makefile.am		Makefile.am
Makefile.in		Makefile.in
README.md		README.md
RELEASE.NOTES		RELEASE.NOTES
aclocal.m4		aclocal.m4
config.guess		config.guess
config.h.in		config.h.in
config.sub		config.sub
configure		configure
configure.in		configure.in
depcomp		depcomp
install-sh		install-sh
ltmain.sh		ltmain.sh
missing		missing
snort.8		snort.8
snort.pc.in		snort.pc.in
verstuff.pl		verstuff.pl
ylwrap		ylwrap

anarey/snort