Hello,
I’m new to Suricata. I was looking for an IDS tool which had LUA support and Suricata seems to be the perfect tool.
I’ve compile my suricata with lua support (output of my --build-info)
…
LUA support: yes, through luajit
libluajit: yes
…
I’ve taken a lua rule from : GitHub - EmergingThreats/et-luajit-scripts
and tried starting it, but I always get the following messages.
root@rita:~# suricata -i ens192
29/4/2021 – 10:52:56 - - This is Suricata version 6.0.2 RELEASE running in SYSTEM mode
29/4/2021 – 10:52:56 - - [ERRCODE: SC_ERR_LUA_ERROR(212)] - failed to setup thread module
29/4/2021 – 10:52:56 - - [ERRCODE: SC_ERR_INVALID_ARGUMENT(13)] - output module “lua”: setup failed
29/4/2021 – 10:53:11 - - all 1 packet processing threads, 4 management threads initialized, engine started.
Any suggestions on where to look further ?
I look at the source : suricata/output-lua.c at master · OISF/suricata · GitHub
but it didn’t help me.
Regards
K4nfr3