Hello, I want to configure Suricata on a Pfsende firewall with 5 interfaces. I have seen that by default you can load categories that generate rules automatically, but some are false positives. There is an option called custom.rule. The question is, is it better to start with these because of the defaults or create new ones for my environment?
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
|
Run suricata with rules only provided by you
|
3 | 208 | March 15, 2024 | |
| Running Suricata default in Windows | 3 | 635 | May 24, 2023 | |
| How to use custom rules? | 2 | 1134 | October 12, 2020 | |
| Create rules on pfsense | 2 | 923 | September 2, 2022 | |
| Rules added to the rule file do not automatically apply to the suricata interface | 1 | 583 | December 6, 2023 |