Suricata Setup on pfSense

Everything Linux, A.I, IT News, DataOps, Open Source and more delivered right to you.
Subscribe
"The best Linux newsletter on the web"

This post is about Suricata Setup on pfSense

Install the Suricata Package

pfSense provides a UI for everything. So from the admin page go to System -> Package Manager -> Available Packages and search for suricata:

Then go ahead and install it. After that you will see it under the Services tab:

Enable Rule Download

Under Services -> Suricata -> Global Settings you can enter settings to download Snort and ET rules:

Suricata setup on pfSense
Suricata setup on pfSense

After adding the rules you can manually download them under Services -> Suricata -> Updates:

First I created a list which represented my home network under Services -> Suricata -> Pass List:

On top of the suppress list you can also choose what rule categories to enable under Services -> Suricata -> Interfaces -> WAN Categories:

Suricata setup on pfSense

Another optional thing you can do is install Service Watchdog:

And under Services -> Service Watchdog enable it to monitor the Suricata Service:

Everything Linux, A.I, IT News, DataOps, Open Source and more delivered right to you.
Subscribe
"The best Linux newsletter on the web"
Mel
Melhttps://unixcop.com
Unix/Linux Guru and FOSS supporter

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest articles

Join us on Facebook