Hi!
Just installed Snort on a separate machine and was wondering, if there’s a way to block IP Connections or Adresses on Mikrotik Routerboard if Snort creates an alert?
Just like SnortSAM.
With packet sniffer all the traffic from the routerboard can be sent to the snort-machine, that works well.
But then I only have an IDS, not an IPS 
Or is there another useful IPS that can be run on Routerboard?
Tzhanks in advance.