Suricata on Pfsense
-
Will there be a Suricata 7.0.10 update coming for pfSense 24.11?
-
Suricata 7.0.10 is available in the current pfSense Plus 25.03 BETA. That means it will also be in the final RELEASE version as well.
As for 24.11 Plus, I would say it depends mostly on how long before the current 25.03 BETA goes to RELEASE. I think some are anticipating that to happen next month (disclaimer -- I have no insider knowledge, just parroting what I've seen posted on the forum). If that turns out to be the case, then I would not expect 7.0.10 to be back ported to 24.11.
-
@bmeeks thanks for the update. Now I understand.
-
@sstatjm said in Suricata on Pfsense:
@bmeeks thanks for the update. Now I understand.
And although the GUI package version in 25.03 BETA still says 7.0.8, the underlying binary is the new 7.0.10 version of Suricata from upstream. There are no differences in the PHP code, so the GUI package is unchanged.
-
oh ok. Thanks again
-
So since there is no version 25.03. There is an official 25.07 now but only get a 7.08.2 what happen to the rest up to Suricata 7.0.10 or 7.0.12?
-
@bmeeks Hello Bill, as others have stated, the code did not reach the final version of pfSense 25.07. Can you check with the developers? Thank you
-
@NRgia said in Suricata on Pfsense:
@bmeeks Hello Bill, as others have stated, the code did not reach the final version of pfSense 25.07. Can you check with the developers? Thank you
Sorry, but I am no longer able to actively maintain the IDS/IPS packages. You will need to directly address this with the Netgate team through the pfSense Redmine bug/feature reporting system here: https://redmine.pfsense.org/projects/pfsense.
-
@bmeeks :( well thank you for your time, sir. 🫡
-
@bmeeks Thank you for what you did for Snort or Suricata. I'm not sure what you want me to do on Redmine, due to is a bug tracker.
My question is for Product Management, which I will ask it here to be public: What is the plan for these 2 packages, Suricata and Snort?
Thank you
-
@NRgia said in Suricata on Pfsense:
@bmeeks Thank you for what you did for Snort or Suricata. I'm not sure what you want me to do on Redmine, due to is a bug tracker.
My question is for Product Management, which I will ask it here to be public: What is the plan for these 2 packages, Suricata and Snort?
Thank you
Yes, Redmine is for both bug reports and feature requests. Asking for the Suricata binary to be updated to the latest 7.0.11 version from upstream is a legitimate Redmine request. I would suggest simply asking for the binary version update instead of asking about future Netgate strategy (such as the support plans for the packages). Strategy discussions typically don't get very far because they deal with proprietary information or plans that a company may not want to publicly discuss.
Redmine is where the Netgate developer team tracks all the code changes they make for pfSense. They will see Redmine reports much quicker than a forum post.