Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Snort 3 on Pfsense using snortrules-snapshot-29120

    IDS/IPS
    2
    3
    150
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      compuomari last edited by

      Hi Guys,

      Does anyone know why does snort 3 of PFsense downloads the 29120 snapshot instead of the snort 3000 snapshot of subscribers rules? does it even make a difference?

      Cheers

      1 Reply Last reply Reply Quote 0
      • bmeeks
        bmeeks last edited by bmeeks

        There is no Snort3 for pfSense. That package has not been created. I started working on it about a year ago, but have since put it back on the shelf as the differences between Snort 2.9.x and Snort3 are pretty huge.

        There is a Snort3 binary package out there that is just the duplicate of what's in FreeBSD ports, but it is not optimized for use on pfSense and should NOT be installed on pfSense. And Snort3 would most definitely need the Snort3 rule set. That rule set is NOT compatible with the Snort 2.9.x family, and if you install Snort3 rules on pfSense you wil badly break both Snort and Suricata on pfSense. You also cannot use the Snort3 rules with Suricata as you will also badly break the Suricata install.

        In summary, DO NOT install Snort3 on pfSense. If you choose to ignore that advice, then you are 100% on your own in terms of support with any problems that result.

        1 Reply Last reply Reply Quote 0
        • C
          compuomari last edited by

          @bmeeks said in Snort 3 on Pfsense using snortrules-snapshot-29120:

          you

          Many thanks.. got it

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy