Suricata does not start in IPS mode

gribanovv2014 · April 14, 2024, 3:40pm

I have configured iptables according to the instructions on NFQUEUE. then I connected the necessary rules and entered the command:

sudo suricata -c /etc/suricata/suricata.yaml -q 0

Returns an error:

14/4/2024 -- 18:30:45 - <Error> - [ERRCODE: SC_ERR_NFQ_CREATE_QUEUE(72)] - nfq_create_queue failed
14/4/2024 -- 18:30:45 - <Error> - [ERRCODE: SC_ERR_NFQ_THREAD_INIT(78)] - nfq thread failed to initialize

how do I fix it if suricata.is yaml configured correctly?

Suricata version: 6.0.1
OS: Debian Bullseye
I installed suricata using apt-get install suricata

gribanovv2014 · April 17, 2024, 10:43am

problem solved
reinstall suricata…

Topic		Replies	Views
Suricata iptables and nft errors when all is setting up correctly Help	3	279	December 12, 2023
Could not start suricata service in IPS Mode Help ips , suricata	2	855	June 8, 2023
Getting error after setting Suricata as a IPS Help	2	793	February 14, 2022
How to start suricata service in NFQ-mode at boot time (Debian/Linux) Help	3	236	May 14, 2024
Unable to run Suricata in IPS Mode Help ips , suricata	1	67	October 28, 2024

Suricata does not start in IPS mode

Related topics