1
Intrusion Detection and Prevention / Suricata and time-out blocked ips and other questions
« on: September 08, 2021, 12:38:31 pm »
Good morning,
Before we start let me say that I love opnSense. Its interface is easy to use and it has many interesting packages: HaProxy, Let's encrypt, Monit, Postfix, Telegraf and so on.
A couple of questions regarding Suricata:
1- How can I know the IPS that have been blocked?
2- Can I create a white-list of ips?
3- is it possible create a time-out for blocked ips?
Thank you very much for your excellent work.
Simiki
Before we start let me say that I love opnSense. Its interface is easy to use and it has many interesting packages: HaProxy, Let's encrypt, Monit, Postfix, Telegraf and so on.
A couple of questions regarding Suricata:
1- How can I know the IPS that have been blocked?
2- Can I create a white-list of ips?
3- is it possible create a time-out for blocked ips?
Thank you very much for your excellent work.
Simiki