SC_ERR_LOGDIR_CONFIG(116)] - The logging directory "/var/log/suricata/" supplied by /etc/suricata//suricata.yaml (default-log-dir) is not writable

Jeff_Lucovsky · June 23, 2022, 11:32am

The logging directory permissions are causing the issue; you can view them with ls -ld /var/log

You can

Change the logging directory used by Suricata by adding -l /path/to/new/logdir to the command line
Or, change the value of default-log-dir to a directory to which your userid has write permissions
Or, start Suricata with sudo