This post is about Suricata Setup on pfSense
Install the Suricata Package
pfSense provides a UI for everything. So from the admin page go to System -> Package Manager -> Available Packages and search for suricata:
![](http://unixcop.com/wp-content/uploads/2021/12/pf-install-suricata-1.png)
Then go ahead and install it. After that you will see it under the Services tab:
![](http://unixcop.com/wp-content/uploads/2021/12/pf-ser-sur-1.png)
Enable Rule Download
Under Services -> Suricata -> Global Settings you can enter settings to download Snort and ET rules:
![Suricata setup on pfSense](http://unixcop.com/wp-content/uploads/2021/12/pf-enable-rule-download.png)
After adding the rules you can manually download them under Services -> Suricata -> Updates:
![](http://unixcop.com/wp-content/uploads/2021/12/pf-download-rules.png)
First I created a list which represented my home network under Services -> Suricata -> Pass List:
![](http://unixcop.com/wp-content/uploads/2021/12/ps-pass-list.png)
On top of the suppress list you can also choose what rule categories to enable under Services -> Suricata -> Interfaces -> WAN Categories:
![](http://unixcop.com/wp-content/uploads/2021/12/ps-enable-rules-per.png)
Suricata setup on pfSense
Another optional thing you can do is install Service Watchdog:
![](http://unixcop.com/wp-content/uploads/2021/12/pf-watchdog-installed.png)
And under Services -> Service Watchdog enable it to monitor the Suricata Service:
![](http://unixcop.com/wp-content/uploads/2021/12/pf-service-watchdog-suricata.png)