Inclusion of Suricata IPS and rules over LAN in pfsense firewall

Felipe_Onate · October 21, 2024, 3:21pm

Consultation on integration and how to include IPS Suricata on PFsense

Suricata version

Operating system: On firewall PFSense

I need information on how to implement and configure Suricata IPS on a PFSense firewall on premise, since I am looking to carry out traffic inspection and make decisions about possible intrusions in the LAN network.

In advance I add all kinds of tips and relevant information to consider.

At the moment I have PFSense configured on a Ryzen 5 CPU, 16GB RAM and a 500GB hard drive.
I also installed the Suricata package and applied it to the Ethernet interface defined as LAN on the PC, but I have doubts about how to address the feodotracker.abuse.ch community rules.

Greetings.

jufajardini · October 21, 2024, 9:54pm

Hi there, welcome to the Suricata community forum

Considering you are using Suricata through PFSense, I think that the best place to ask your question would be their forum (maybe IDS/IPS | Netgate Forum? ).

I also installed the Suricata package and applied it to the Ethernet interface defined as LAN on the PC, but I have doubts about how to address the feodotracker.abuse.ch community rules.

Is this something unrelated to the first part of the question? If so, can you elaborate what you do mean by having doubts on how to address the feodotracker.abuse.ch rules?

Topic		Replies	Views
Suricata and pfsense integration Rules ips , pfsense , rules , suricata	4	13216	March 14, 2022
Suricata on pfSense blocking IPs on Pass List Help pfsense	16	7487	January 14, 2022
pfSense - Allow All Traffic From Host Help ips	2	1845	July 27, 2021
Suricata on CARP VIP LAN on a pfSense HA Environment Help	1	9	November 12, 2024
Suricata on VirtualBox host Help ips , pfsense	6	2891	September 21, 2020

Inclusion of Suricata IPS and rules over LAN in pfsense firewall

Related topics