Brcontrol is a set of patches to allow some
interaction between an IDS and a firewall.
Currently, snort is supported as an IDS, and the
netfilter facility of Linux is supported as a
firewall. Brcontrol can help in the creation of
aggresive honeypots or other advanced firewall and
IDS configurations. It can also work as a bridge.