I want suricata to detect NMAP, Brute force, DDOS attacks, is there an example for custome rule in pfsense? I’ve searched but can’t run on the suricata I installed
There are different rulesets, some are shipped with Suricata but there are also ones like the Emerging Threats Ruleset. There you can look for rules that try to match scans.
How it’s enabled in pfsense should be asked at the pfsense forum.
ok sir, but do you have sample rules for DDOS, Bruteforce and Nmap for suricata rule?