4. Suricata IOS blocked

Suricata IOS blocked

  • M

    which rule set has IOS apple updates and youtube listed… Cant watch youtube on mobile's

    thanks in advance

    0

  • @micropone:

    which rule set has IOS apple updates and youtube listed… Cant watch youtube on mobile's

    thanks in advance

    My first suspicion would be alerts from the stream5 preprocessor.  It can give a lot of false positives in some environments.  You will need to look on the ALERTS tab to see which alerts are firing on your IOS devices.  Should be able to track things down using the IP addresses of the Apple devices to match up with alerts on the ALERTS tab.

    Bill

    0
  • M

    thanks Bill…

    0

  • @micropone:

    thanks Bill…

    Once you locate the offending alerts on the ALERTS tab, you can then decide if they are likely false positives.  If you conclude they are, you can simply disable those rules by clicking the red X icon in the column on the far right for GID:SID.

    Bill

    0
  • M

    thanks I got it working…. and yes I red X'ed it...

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy