Suricata Widget in pfSense 2.2.6

dannyeuu

Someone know this error? :'(

Warning: date_timestamp_get() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 187 
Warning: date_format() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 188 
Warning: date_format() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 189 
Warning: date_timestamp_get() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 187 
Warning: date_format() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 188 
Warning: date_format() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 189 
Warning: date_timestamp_get() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 187 
Warning: date_format() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 188 
Warning: date_format() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 189 
Warning: date_timestamp_get() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 187 
Warning: date_format() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 188 
Warning: date_format() expects parameter 1 to be DateTimeInterface, boolean given in /usr/local/www/widgets/widgets/suricata_alerts.widget.php on line 189

Oniric

i have the same issue with the suricata alert widget  :'(

did you find a solution ? does someone got one ?

bmeeks

This would happen if, for some reason, an alert had an empty column for the date and time of the event.  The code assumes all the fields are there when parsing a line from the alerts log for display.  If you don't mind losing history, you can clear the alerts log by using the button on the ALERTS tab.  That will delete the log and start a new one.  The error should disappear then.

If you have already done this (cleared the alerts out) and the error persists, please post back.  The baseline Suricata package has been converted to Bootstrap by a couple of the pfSense developers.  I have been working on Snort.  There is a new feature to be added to Suricata, and then it will be ready for pfSense 2.3.  If this error persists after you clear the alerts, then post a reply and include your alert log file from /var/log/suricata/xxx (where xxx is the specific interface).

Bill

Oniric

Hello,

thanks for your answer… it took me a while to come back, i'm sorry. I just cleared the log files and still the issue, even with the log file deleted. I think remember clicking on the small "config button" in the widget, and edit the setting. I don't remember what it was unfortunately but i think there is only one settings available (like number of displayed alerts). Since then i don't even have the "config button" anymore.

But the alert are displayed without any issue into the suricata alert page.

if you still need my extract of suricata logs i will send them

bmeeks

This bug is fixed in the new Suricata 3.0 package available for pfSense 2.3-BETA.

Bill