Is there a way to define a regular expression within the HOME_NET variable in the config file? For example, I would like to define a HOME_NET where the subnets might change based on the deployment:
172.20.1xx.0/24Where xx could range anywhere from 00 to 99. Or would you have to list out each subnet 172.20.100.0/24,172.20.101.0/24, etc. ?
Thank you.
That’s not possible but you can define groups in vars and use those vars, see 8.1. Rules Format — Suricata 9.0.0-dev documentation