I need help running suricata on windows using windivert

VictorVanhoorenHogen · August 30, 2024, 12:52pm

Hello,

To install suricata on my windows server 2022 I used the pre built binary that comes with windivert.

Suricata version: 7.0.6

When trying to run the test commands to see if windivert is enabled I used the following command

suricata -c suricata.yaml --windivert [filter string]

I seem to always get the message wpcap.dll was not found. Do i need to install npcap to use suricata with windivert? Not sure if there exists an example yaml config for using suricata this way on Windows.

Thank you

Screenshot from 2024-08-30 14-50-49

Jeff_Lucovsky · September 2, 2024, 4:29pm

This means there’s no support for handling PCAP files on your system. You can download npcap from https://npcap.com/

Topic		Replies	Views
Suricata - For getting clarity on Suricata dependency configuration Help community , windows , suricon , suricata	2	270	January 10, 2024
How to install & configure suricata in windows using binary packages Help community , windows , suricata	2	1047	December 27, 2023
I receive System Error when I start Suricata Help	3	4127	June 29, 2021
Startup fails, suricata.exe Help	10	2022	September 10, 2021
Suricata for Win32 Help	1	376	July 27, 2021

I need help running suricata on windows using windivert

Related topics