Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Suricata 4.1.4_3 Not Blocking

    Scheduled Pinned Locked Moved IDS/IPS
    3 Posts 2 Posters 212 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      bose301s
      last edited by

      Just updated to the newest package and kept everything the same, on my WAN had some Emerging Threat lists active and blocking on Alert, after the update I am still seeing alerts but nothing is being added to my block list. Any help is appreciated.

      1 Reply Last reply Reply Quote 0
      • bmeeksB
        bmeeks
        last edited by bmeeks

        Let's track this in this thread about Suricata 4.1.4_2 as this behavior may have gotten introduced by another bug fix in 4.1.4_2: https://forum.netgate.com/topic/144009/suricata-4-1-4_2-not-blocking-hosts/10.

        UPDATE
        The fix for this bug is posted for the pfSense team to review and merge. I've asked them to expedite this one, so keep checking for a new Suricata package to show up in PACKAGE MANAGER either later today or early tomorrow.

        The pull request for the fix is here: https://github.com/pfsense/FreeBSD-ports/pull/652.

        1 Reply Last reply Reply Quote 0
        • bmeeksB
          bmeeks
          last edited by

          This bug is corrected in the latest Suricata 4.1.4_4 package update. The release notes are here.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.