Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Snort custom.rules

Locked pfSense Packages

2 Posts 2 Posters 2.1k Views

Log in to reply

E

edyyy13
last edited by

hi
i would add rules in custom.rules but if i add any rule save it without error but if i would restart interface it's don't start
:-[
that exemple of my custom rule : alert tcp any 80 -> any any (msg:"HTTP trafic ";sid:9000010;)
i don't know why ??
1 Reply Last reply
Reply Quote 0
M

michelm
last edited by

Did you check the Snort errors in the system logs?

Btw, you have to set the classtype option in your custom rules.
1 Reply Last reply
Reply Quote 0

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.

1 / 1