1. Home
  2. pfSense Packages
  3. Snort - Suppression List

Snort - Suppression List

  • G

    I have Snort running on Pfsense 2.2RC. I would like guidance on which alerts I can safely add to the suppression list. It is unclear what the meaning of "Unknown" vs. :not suspicious". I am trying to configure the Snort system for the longer term. The Pfsense platform is an Xeon E-3 with 16 GB and a 10K rpm hard drive.

    0
  • bmeeks

    @ghkrauss:

    I have Snort running on Pfsense 2.2RC. I would like guidance on which alerts I can safely add to the suppression list. It is unclear what the meaning of "Unknown" vs. :not suspicious". I am trying to configure the Snort system for the longer term. The Pfsense platform is an Xeon E-3 with 16 GB and a 10K rpm hard drive.

    There is a thread here with "Master Suppress List" in the title.  Do a search and it should pop up.  It is several pages worth of posts from experienced users here.

    Edit:  found the link for you:  https://forum.pfsense.org/index.php?topic=56267.0

    Bill

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy