Suricata/IDS change, not automatically synced to secondary HA node

iMx · March 09, 2019, 10:46:01 AM

Hi there,

Running 19.1.3 making a change to Suricata/IDS, for example changing from Default -> Hypersync pattern matcher, the configuration does not automatically trigger an xmlrcsync of the config to the secondary node.

I cannot see any attempt for it to do so, I see the Suricata config reload/regeneration in the logs, but no automatic sync.

If I go to Firewall -> HA -> Status -> Synchronize config to backup, the change is replicated. But it does not seem to trigger automatically. I would assume it should do? Is anyone else seeing this?

Other changes, firewall rules for example, DO automatically trigger a change.

iMx · March 09, 2019, 10:49:01 AM

P.S. I have ' Intrusion Detection' enabled for configuration sync.

Suricata/IDS change, not automatically synced to secondary HA node

iMx

March 09, 2019, 10:46:01 AM

iMx

March 09, 2019, 10:49:01 AM #1