How to configure Suricata-IDS in IPS mode in Windows Server 2019?

Hack3rcon · September 5, 2021, 7:42am

Hi,
I got below errors:

C:\Program Files\Suricata>suricata -c suricata.yaml -i 172.1.1.2 -l ./log -knone -vvv --service-install
5/9/2021 -- 12:08:52 - <Info> - Running as service: no
5/9/2021 -- 12:08:52 - <Info> - translated 172.1.1.2 to pcap device \Device\NPF_{FFDBB923-6641-45AF-B37E-0A0A839CC103}
5/9/2021 -- 12:08:52 - <Error> - [ERRCODE: SC_ERR_SVC(162)] - Can't create service: 1073
C:\Program Files\Suricata>
C:\Program Files\Suricata>suricata -c suricata.yaml -l ./log -knone -vvv --service-install
5/9/2021 -- 12:10:50 - <Info> - Running as service: no
5/9/2021 -- 12:10:50 - <Error> - [ERRCODE: SC_ERR_SVC(162)] - Can't create service: 1073

Hack3rcon · September 13, 2021, 2:15pm

Hello,
How can I solve that error?

Thank you.

suricatalfon · November 29, 2021, 7:16am

Hí,

Check that the service is not already created. It has happened to me with a Mindow 10. If it is created, it is possible that it is in manual mode. Start it from Services.

din0saurfail · October 27, 2022, 11:26am

Hi,

I had the same error and I solved it by deleting the existing Suricata service with sc delete suricata and installing it again with the --service-install flag.

Topic		Replies	Views
Suricata 5.0.2 in IPS mode Help	1	605	July 22, 2020
What is wrong with y command? Help	1	337	October 8, 2021
Unable to run Suricata in IPS Mode Help ips , suricata	1	47	October 28, 2024
Suricata as IPS on windows Help ips , windows , suricata	1	430	September 27, 2023
Suricata-IDS does not work in AF_PACKET IPS mode Help	27	1341	November 12, 2023

How to configure Suricata-IDS in IPS mode in Windows Server 2019?

Related topics