This post is about Suricata Setup on pfSense
Install the Suricata Package
pfSense provides a UI for everything. So from the admin page go to System -> Package Manager -> Available Packages and search for suricata:
Then go ahead and install it. After that you will see it under the Services tab:
Enable Rule Download
Under Services -> Suricata -> Global Settings you can enter settings to download Snort and ET rules:
After adding the rules you can manually download them under Services -> Suricata -> Updates:
First I created a list which represented my home network under Services -> Suricata -> Pass List:
On top of the suppress list you can also choose what rule categories to enable under Services -> Suricata -> Interfaces -> WAN Categories:
Suricata setup on pfSense
Another optional thing you can do is install Service Watchdog:
And under Services -> Service Watchdog enable it to monitor the Suricata Service:
