Brcontrol is a set of patches to allow some interaction between a IDS and a firewall (currently snort and linux netfilter) It can help in the creation of aggresive honeypots or other advanced firewall and ids configurations. It can also work as a bridge.