4. Setting up Suricata

Setting up Suricata

  • B

    Greetings

    New to this concept of pfSense, Suricata etc etc

    Great source of info here, but am struggling to understand the concept. Please can someone help me?

    I have setup pfsense andit is working great. I now introduced Suricata to it. All traffic going though seems to be blocked.  Here is what I have done so far:

    I started adding entries to the SID Management for some of the repeating messages.
    I also started to create Firewall Aliases for known services like Apple (17.0.0.0/24), Some Microsoft and some others.

    Now, question I have is, is this how this thing works? Do I have to keep adding IP addresses to aliases? Are there any lists available readily?

    Or am I going completely wrongway?

    Thanks for your help.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy