Dear All,
I'm pretty new to suricata but i have experience on Snort 2 Pfsense. Snort show the alert and block action on log. How to view the alert and drop action on log for Suricata? I navigate to Alerts tab but nothing is showing.
Please help me. Appreciate that. Thanks.
Suricata implemetation was the reason I switched back to Pfsense.
The IDS logging and overviews really sucks IMHO.
Its very simple.... who is doing what on any given time.
A dashboard should show that.... and it should be easy to monitor. Neither is in OS.
Can you provide more information why Suricata is like this?
I can see Snort 2 provide alert and block log in Pfsense. I feel very safe when something is blocking but i cannot see the same scenario in OPNSense.
Anyone can enlighten on this? Please help.Appreciate it.