The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field.

snort_inline as a project is pretty much dead at this point, unless
somebody else wants to pick it up.  Victor and I are both working on a
new open source IDP engine called suricata, which allows you to use
NFQUEUE, has an almost complete snort compatible rule language, and is
multi-threaded so you to take advantage of multiple cores without
running multiple instances of the engine.  If you are interested you
can find more info or download the engine here:

http://www.openinfosecfoundation.org/">http://www.openinfosecfoundation.org/

Regards,

Will

雖然這個問題產生已過了一段時間，但還是轉貼來這提醒大家!!!

詳讀: http://www.ithome.com.tw/itadm/article.php?c=59846

只要不在瀏覽網站時，如果有提示你要不要按 F1，你就別按它吧

Varnish is a state-of-the-art, high-performance HTTP accelerator. It uses the advanced features in Linux 2.6, FreeBSD 6/7 and Solaris 10 to achieve its high performance.

Some of the features include

• A modern design
• VCL - a very flexible configuration language
• Load balancing with health checking of backends
• Partial support for ESI
• URL rewriting
• Graceful handling of "dead" backends
• more features...

Varnish is free software and is licenced under a modified BSD licence. Please read the introduction to get started with Varnish.

See what people blog about varnish