Hi all,

I recently spent some time totally rewriting and fleshing-out the IPS rule selection wiki page: https://wiki.ipfire.org/configuration/firewall/ips/rule-selection.

The iterative approach to choosing IPS rules is a difficult subject to put in to words succinctly and I feel the page has become very long and wordy.  I'm aware that some people reading the English documentation won't have English as their first language, so I'd appreciate any feedback you have.

Contrary to that, I feel that the page would be easier to understand if we had more good examples for readers.


I've briefly communicated with TimF and he mentioned the flowbits bug/limitations at the moment (bugs like 12086 and 12078).  If these bugs cannot be fixed soon or easily could someone with a better understanding come up with a set of work-around steps we could write in a notice somewhere in the IPS documentation?


Thank you,

dnl