Suricata 5.0.4 stable packages are now available for Ubuntu on Ubuntu PPA (Launchpad)

More about Suricata 5.0.4 stable features, improvements and release notes :

Suricata 5.0.4 stable packages are now available for Ubuntu on Ubuntu PPA (Launchpad) - Rust enabled.

  • 16.04 Xenial
  • 18.04 Bionic
  • 20.04 Focal

32 and 64 bit packages available with the following architectures -

  • amd64
  • armhf
  • arm64
  • ppc64
  • i386
  • s390x

The default installation in 5.0.4 also includes (available in the package) the tools:

  • suricata-update
  • suricatactl

You can also get some help of how to use the tools by doing “suricata-update -h” or “suricatactl -h”

The packages are build-in with:

  • IPS (nfqueue/AFP)
  • All JSON output
  • GeoIP
  • Unix-Socket
  • Lua scripting
  • NSS(MD5) enabled
  • PIE - Position Independent Executable
  • Redis enabled support
  • Rust

The Ubuntu

  • 18.04 Bionic
  • 20.04 Focal

distribution packages are with Hyperscan enabled by default for extra performance.
(Your CPU needs to have the SSSE3 flag. You can check with - cat /proc/cpuinfo)

By community request there is also available “suricata-dbg” (Suricata with enabled debug features) package ready to use out of the box install:

sudo apt-get install suricata-dbg

Suricata 5.0.4 stable is available from our suricata-5.0 PPA repository.

How to:

sudo add-apt-repository ppa:oisf/suricata-5.0
sudo apt-get update

https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Ubuntu_Installation_-Personal_Package_Archives%28PPA%29

Feedback is welcome!

Trainings and Webinars
See https://suricata_events.eventbrite.com/ for the current list of planned training sessions.

Thank you !