Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    DPI (Deep Packet Inspection) and pfSense

    Scheduled Pinned Locked Moved IDS/IPS
    3 Posts 2 Posters 3.7k Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B Offline
      beloc
      last edited by

      Hello everyone.

      In the past, one of the ways that you could provide DPI on pfSense was to use something like Suricata/Snort, or NTOP. Since the Suricata package is one that doesn't have a maintainer, if the community using Snort instead? I see the Netgate has pretty specific instructions on setting something like this up. We currently use pfBlocker in all of our devices, was wondering about the Suricata/Snort situation.

      Thank you for any feedback.

      S 1 Reply Last reply Reply Quote 0
      • S Offline
        SteveITS Rebel Alliance @beloc
        last edited by

        @beloc Snort had the same maintainer. It's only been a few weeks since that happened so it's a bit unclear yet, I'd be patient. Both still function.

        Note neither can see into encrypted packets such as HTTPS.

        Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to reboot, or more depending on packages, and device or disk speed.
        Upvote 👍 helpful posts!

        B 1 Reply Last reply Reply Quote 0
        • B Offline
          beloc @SteveITS
          last edited by

          @SteveITS Thank you for the reply. I understand. Hopefully its picked back up.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.