1. Home
  2. pfSense Packages
  3. IDS/IPS
  4. Snort 3 on Pfsense using snortrules-snapshot-29120

Snort 3 on Pfsense using snortrules-snapshot-29120

  • C

    Hi Guys,

    Does anyone know why does snort 3 of PFsense downloads the 29120 snapshot instead of the snort 3000 snapshot of subscribers rules? does it even make a difference?

    Cheers

    0
  • bmeeks

    There is no Snort3 for pfSense. That package has not been created. I started working on it about a year ago, but have since put it back on the shelf as the differences between Snort 2.9.x and Snort3 are pretty huge.

    There is a Snort3 binary package out there that is just the duplicate of what's in FreeBSD ports, but it is not optimized for use on pfSense and should NOT be installed on pfSense. And Snort3 would most definitely need the Snort3 rule set. That rule set is NOT compatible with the Snort 2.9.x family, and if you install Snort3 rules on pfSense you wil badly break both Snort and Suricata on pfSense. You also cannot use the Snort3 rules with Suricata as you will also badly break the Suricata install.

    In summary, DO NOT install Snort3 on pfSense. If you choose to ignore that advice, then you are 100% on your own in terms of support with any problems that result.

    0
  • C

    @bmeeks said in Snort 3 on Pfsense using snortrules-snapshot-29120:

    you

    Many thanks.. got it

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy