Re: Проблемы со Snort [message #39157 is a reply to message #39127] |
Sat, 20 March 2010 11:03 |
sHaggY_caT
Messages: 144 Registered: August 2008 Location: Moscow, Russian Federatio...
|
Senior Member |
|
|
Попробуйте сеть типа veth с бриджом на Ваш настоящий интерфейс ноды. Если не получится, можно, имхо, поэксперементировать с
============== vzctl( 8 ) ===================
--capability capname:on|off
Sets a capability for a container. Note that setting capability when the container
is running does not take immediate effect; restart the container in order for the
changes to take effect. Note a container has default set of capabilities, thus any
operation on capabilities is "logical and" with the default capability mask.
You can use the following values for capname: chown, dac_override, dac_read_search,
fowner, fsetid, kill, setgid, setuid, setpcap, linux_immutable, net_bind_service,
net_broadcast, net_admin, net_raw, ipc_lock, ipc_owner, sys_module, sys_rawio,
sys_chroot, sys_ptrace, sys_pacct, sys_admin, sys_boot, sys_nice, sys_resource,
sys_time, sys_tty_config, mknod, lease, setveid, ve_admin.
IT-outsource for UNIX servers,
http://ha-systems.ru
[Updated on: Sat, 20 March 2010 11:04] Report message to a moderator
|
|
|