Show Posts
1
Intrusion Detection and Prevention / Destination IP Null0 with suricata (DDoS Extinction)
« on: April 04, 2024, 04:53:51 pm »
I'm using it
OPNsense with suricata
The WAN interface and LAN interface are made up of bridges
In between is Suricata.
I'm getting PublicIPs (e.g. 124.0.1.2-255 and 68.0.2.2-255).
If there is a packet that violates the Suricata Rule through the destination IP of 68.0.2.100 through Suricata
i want sending null0 / 68.0.2.100 IP to LAN (68.0.2.100 Null Route, Don't route LAN)
If possible, I wonder how.
OPNsense with suricata
The WAN interface and LAN interface are made up of bridges
In between is Suricata.
I'm getting PublicIPs (e.g. 124.0.1.2-255 and 68.0.2.2-255).
If there is a packet that violates the Suricata Rule through the destination IP of 68.0.2.100 through Suricata
i want sending null0 / 68.0.2.100 IP to LAN (68.0.2.100 Null Route, Don't route LAN)
If possible, I wonder how.