Hi. Is there any reason your server should recieve traffic destined for other hosts?
Getting the packets to Suricata in IDS mode is usually done using either network TAPs or SPAN ports on routers/switches. I would recommend looking into the latter.
Not sure what your timeline on the audit is, but setting up Suricata with little time and IDS expertise is not something that is done in an instant.