Suricata does not start in IPS mode

gribanovv2014 · April 14, 2024, 3:40pm

I have configured iptables according to the instructions on NFQUEUE. then I connected the necessary rules and entered the command:

sudo suricata -c /etc/suricata/suricata.yaml -q 0

Returns an error:

14/4/2024 -- 18:30:45 - <Error> - [ERRCODE: SC_ERR_NFQ_CREATE_QUEUE(72)] - nfq_create_queue failed
14/4/2024 -- 18:30:45 - <Error> - [ERRCODE: SC_ERR_NFQ_THREAD_INIT(78)] - nfq thread failed to initialize

how do I fix it if suricata.is yaml configured correctly?

Suricata version: 6.0.1
OS: Debian Bullseye
I installed suricata using apt-get install suricata

gribanovv2014 · April 17, 2024, 10:43am

problem solved
reinstall suricata…

Topic		Replies	Views
Suricata iptables and nft errors when all is setting up correctly Help	3	250	December 12, 2023
Could not start suricata service in IPS Mode Help ips , suricata	2	790	June 8, 2023
Getting error after setting Suricata as a IPS Help	2	768	February 14, 2022
Ubuntu 20.04 : how to start suricata with systemctl in NFQ mode Help	1	654	March 7, 2021
Suricata with IDSTower Help ips , community , rules , suricata	1	252	February 28, 2024

Suricata does not start in IPS mode

Related Topics