Suricata not alerting DNS or any? rules
-
Hi,
I am used to Suricata alerting on .to domains for me. I am updated to the latest package with Suricata 6.0.4 and I noticed I have absolutely no alerts anymore.
I confirmed the rule is still selected and I force a DNS lookup to a .to domain on that interface and where I would normally have got alerts nothing has happened! This is occurring with both pf 2.5.2 and 2.6
Nothing in Alerts GUI, widget, eve.json or alerts.log.
-
-
-
-
-
-
-