Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Suricata Package Update – 2.0.8 pkg v2.1.6 Release Notes

    Scheduled Pinned Locked Moved IDS/IPS
    2 Posts 2 Posters 790 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • bmeeksB Offline
      bmeeks
      last edited by

      Suricata 2.0.8 pkg v2.1.6

      This update for the Suricata GUI package includes one new feature and fixes seven reported issues.  The underlying binary version remains at 2.0.8 RELEASE.

      New Features

      • A new GUI option has been added on the GLOBAL SETTINGS tab to allow the user to hide deprecated rules categories found in the Snort VRT and Emerging Threats/ET-Pro rules packages. A number of rules categories in the Snort VRT rules package are now empty and their rules transferred to other newer categories. The old empty files were left so as not to break legacy configurations. Two rules categories have been deprecated in the Emerging Threats/ET-Pro rules package. This new GUI option allows these deprecated files to be removed so they no longer display on the CATEGORIES tab. The specific files to be removed are contained in a deprecated_rules text file in the Suricata directory tree. The new GUI option defaults to off (deprecated rules categories will be displayed). Setting the new option to on will remove and hide the deprecated categories.

      Bug Fixes

      • Proxy ARP virtual IPs not included in default HOME_NET variable and PASS LIST.

      • Suricata Alerts Widget can sometimes fail to get a valid file handle but will continue anyway and spam the system log with warnings.

      • Title in PASS LIST and HOME_NET popup viewer window says "SNORT" instead of "SURICATA".

      • FQDN aliases are allowed on VARIABLES tab and should instead be flagged and ignored since they are not supported by Suricata.

      • Configured IPREP IP Lists not syncing with CARP replication partners.

      • On some re-installs, if Suricata takes a long time to start, the package installation PHP process can time out and consequently the Suricata package installation fails to complete. Changed restart of Suricata at end of package re-installation/upgrade to launch as a background task to prevent this.

      • Tighten the SSL security settings used by CURL for rules tarball package downloads.

      Bill

      1 Reply Last reply Reply Quote 0
      • D Offline
        doktornotor Banned
        last edited by

        Got the package updated during 2.2.4 upgrade. Works great.  8)

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.