Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort/Suricata + Traffic monitoring

    L2/Switching/VLANs
    2
    2
    420
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • _
      _rp
      last edited by

      Hey

      I'm trying to understand how I would be able to run either Snort or Suricata alongside traffic monitoring in the way of outputting stats to a Grafana dashboard at the same time.

      When I enable Snort or Suricata then I'm unable to collect data to send to Grafana, I understand this is the same problem if I want to start running some form of QoS on the same interface.

      Is it possible to port mirror inside pFsense or equally possible to port mirror from my network switch?

      Has anyone successfully done this before? I've checked and can't see any guide to do this.

      NogBadTheBadN 1 Reply Last reply Reply Quote 0
      • NogBadTheBadN
        NogBadTheBad @_rp
        last edited by

        @romprod Can't you send everything to a syslog server and grab the data from there?

        Screenshot 2021-06-05 at 14.54.25.png

        Andy

        1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.