OPNsense Forum

English Forums => Intrusion Detection and Prevention => Topic started by: megazocker on November 19, 2022, 10:08:42 pm

Title: snort_vrt.rulesfile field what a choise i have to made ?
Post by: megazocker on November 19, 2022, 10:08:42 pm

Dear all

I Use the last Version
OPNsense 22.7.8-amd64
FreeBSD 13.1-RELEASE-p3
OpenSSL 1.1.1s 1 Nov 2022

i have an oink code, and i that i have a choice of Snort v3.0 "Talos_LightSPD.tar.gz" or "snortrules-snapshot-31440.tar.gz"  or i have to Use Snort v2.9 with "snortrules-snapshot-2983.tar.gz" file.

wich one is the correct choice for the field ?

THX

Title: Re: snort_vrt.rulesfile field what a choise i have to made ?
Post by: megazocker on November 22, 2022, 11:17:54 pm

Dear All

I had a look again on
https://www.snort.org/downloads
and i found the latest one with 5 digits "snortrules-snapshot-31440.tar.gz".
i hope this is the right idea.

C´

Title: Re: snort_vrt.rulesfile field what a choise i have to made ?
Post by: skyfighter on November 27, 2022, 10:14:13 am

I chose the following rulesfile: snortrules-snapshot-29190.tar.gz

I read somewhere that this is the latest rulesfile from Snort working with Suricata, because the v3 rulesfiles don't work with Suricata. But I can't find the article where I read it.