OPNsense Forum

English Forums => Intrusion Detection and Prevention => Topic started by: SungHyun on April 04, 2024, 04:53:51 pm

Title: Destination IP Null0 with suricata (DDoS Extinction)
Post by: SungHyun on April 04, 2024, 04:53:51 pm: I'm using it
OPNsense with suricata

The WAN interface and LAN interface are made up of bridges
In between is Suricata.

I'm getting PublicIPs (e.g. 124.0.1.2-255 and 68.0.2.2-255).

If there is a packet that violates the Suricata Rule through the destination IP of 68.0.2.100 through Suricata
i want sending null0 / 68.0.2.100 IP to LAN (68.0.2.100 Null Route, Don't route LAN)

If possible, I wonder how.

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy