Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Suricata

    Scheduled Pinned Locked Moved pfSense Packages
    2 Posts 2 Posters 570 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      ghkrauss
      last edited by

      Gentlemen:

      I have Suricata installed running with Pfsense 2.2. I have a subscription to Emering Threats ETPro rules. Does one have to also install Snort rules also? Any specific configuration issues for Emerging Threats ETPro rules?

      1 Reply Last reply Reply Quote 0
      • bmeeksB
        bmeeks
        last edited by

        @ghkrauss:

        Gentlemen:

        I have Suricata installed running with Pfsense 2.2. I have a subscription to Emering Threats ETPro rules. Does one have to also install Snort rules also? Any specific configuration issues for Emerging Threats ETPro rules?

        No, there is no requirement to use the Snort VRT rules.  In fact, you will find that a significant number of them (around 700 or more at last count) will not compile and run on Suricata due to them containing some rule options and keywords that are not currently supported in Suricata.  If you have an ET-Pro subscription, you should be fine.

        There some configuration threads posted here in the Packages forum.  Do a quick search for "Suricata blueprint" and that should turn up one of them.

        Bill

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.