Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - zkduzvzpene

Pages: [1]

21.7 Legacy Series / Re: Intrusion Detection: Administration / No Last update date

« on: December 11, 2021, 05:21:08 pm »

Hello,

I started to reinstall OpnSense before your reply.
After reinstall, it seems that it works!

I didn't understand what happened.
Thank you very much for your time and your help.

21.7 Legacy Series / Re: Intrusion Detection: Administration / No Last update date

« on: November 30, 2021, 09:29:56 pm »

Hello,

I agree, I do not use os-intrusion-detection-content-et-open anymore.
I still have the issue.
As we do not see any error message, do I have to re-install my device from scratch?

Thanks

21.7 Legacy Series / Re: Intrusion Detection: Administration / No Last update date

« on: November 29, 2021, 10:11:38 am »

I restarted the router at 8h12 then I run the script.
I do not see any error

21.7 Legacy Series / Re: Intrusion Detection: Administration / No Last update date

« on: November 28, 2021, 09:06:48 pm »

I put files instead of screenshots

I don't see any error...

21.7 Legacy Series / Re: Intrusion Detection: Administration / No Last update date

« on: November 28, 2021, 08:32:54 pm »

Here is the Backend log

21.7 Legacy Series / Re: Intrusion Detection: Administration / No Last update date

« on: November 28, 2021, 08:05:31 pm »

here are the General Logs

21.7 Legacy Series / Re: Intrusion Detection: Administration / No Last update date

« on: November 28, 2021, 06:52:35 pm »

Hello @Fright,

Please find enclosed 3 screenshoots : no plugin installed (current setting), 1 plugin Open installed and the impact on the Rules.

Where is located the "General log" ?

BR

21.7 Legacy Series / Intrusion Detection: Administration / No Last update date

« on: November 28, 2021, 05:36:48 pm »

Hello,

I am a newcomer to OPNSense. Sorry if my question is a bit silly :|

A was on Synology Router before and I want to move to OPNSense.
I was using Threat Protection. If I well understand, I have to use Suricata on OPNSense (installed by default).

In "Intrusion Detection: Administration: Download", all the rules OPNsense-App-detect/* can be enabled and downloaded (I see a date on the "last updated" column, but it doesn't work for abuse.ch/* and ET open/*.
I can enable them but there is no date after clicking on "Download & update rules".
** see attachment **
I cannot see any error message.

I saw on some tutorials/docs that the "Filter" column is not on my screen.
I also have only 2 selection buttons : "Enable/disable selected". I don't see "Enable (drop/clear filter)" buttons.
Is it a problem?

If I try to install the plugin os-intrusion-detection-content-et-open, the rules into "Intrusion Detection: Administration" are listed in double. I have removed it.
Do I have to install it?

Does somebody have an idea of my mistake?

Thank you in advance

---
Type   opnsense
Version   21.7.6
Architecture   amd64
Flavour   OpenSSL
Commit   acdaa7649
Mirror   https://pkg.opnsense.org/FreeBSD:12:amd64/21.7
Repositories   OPNsense
Updated on   Fri Nov 26 19:33:59 CET 2021
Checked on   Sun Nov 28 00:00:00 CET 2021
---
suricata   6.0.4   6.82MiB   OPNsense   GPLv2   High Performance Network IDS, IPS and Security Monitoring engine
---
os-intrusion-detection-content-et-open   1.0.1   1.53KiB   OPNsense   IDS Proofpoint ET open ruleset complementary subset for ET Pro Telemetry edition
os-intrusion-detection-content-et-pro   1.0.2_1   5.72KiB   OPNsense   IDS Proofpoint ET Pro ruleset (needs a valid subscription)
os-intrusion-detection-content-pt-open   1.0_1   798B   OPNsense   IDS PT Research ruleset (only for non-commercial use)
os-intrusion-detection-content-snort-vrt   1.1_1   12.7KiB   OPNsense   IDS Snort VRT ruleset (needs registration or subscription)

Pages: [1]