Hello, folks
I’m just beginner with Suricata I would like to ask some many questions, I hope to fund the answer as I want ^^, well I would like to setup Suricata in OS Debian and I would like to filter the traffic network of all the network not only the computer uses is it possible?
Thank you
This will help you get setup on Debian https://suricata.readthedocs.io/en/suricata-5.0.2/install.html#debian
As far as all network traffic, you will need some method that actually forwards all network traffic to the computer you have suricata installed on (e.g. span or tap).
Thank you very much now, things become little clear.