Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
IDS/Intrusion Detection: Policy doesn't seem to change Rules at all
« previous
next »
Print
Pages: [
1
]
Author
Topic: IDS/Intrusion Detection: Policy doesn't seem to change Rules at all (Read 2760 times)
schuc
Newbie
Posts: 5
Karma: 0
IDS/Intrusion Detection: Policy doesn't seem to change Rules at all
«
on:
November 08, 2021, 01:37:42 am »
In IDS, I have created a policy to change ALL rules to disabled. Yet, when I look at the rules, there are a few that are checked/enabled. I can't manually check/uncheck them but I may create another post for that.
Please have a look at the following screenshots and let me know if something in the setup looks wrong to you:
Thanks and I appreciate any suggestions.
This is on a Protectli FW4B running OpnSense 21.7.4 and Suricata 6.0.3_3.
Logged
Fright
Hero Member
Posts: 1777
Karma: 164
Re: IDS/Intrusion Detection: Policy doesn't seem to change Rules at all
«
Reply #1 on:
November 08, 2021, 07:52:14 pm »
what is indicated in the "matched_policy" field for the "ET P2P Phatbot Control Connection" rule when you click on the edit button?
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
IDS/Intrusion Detection: Policy doesn't seem to change Rules at all