Suricata v5.0.2_3 Package Update - Release Notes
bmeeks last edited by bmeeks
This update corrects an issue with VPN addresses added to Pass Lists. Formerly Suricata used a pfSense system call to obtain VPN addresses. But this system call does not currently return the following types of VPN addressess:
- IPsec Mobile IPv6 subnet
- IPsec Mobile warriors IPs (VPN / IPsec / Pre-Shared Keys / Edit)
- OpenVPN client/server Tunnel Network / Remote Network IPv6
- L2TP VPN network
This update creates a custom function within Suricata that pulls all VPN addresses defined in the firewall when creating a Pass List.