Suricata: Policies and using Snort Rules

Started by stifferd, October 04, 2021, 01:25:14 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
October 04, 2021, 01:25:14 AM Last Edit: October 05, 2021, 03:46:21 PM by stifferd
Hi Everyone,

I am curious about a few things:

Version: OPNsense 21.7.3_3-amd64 (suricata 6.0.3_2)


Do snort 3.x rules work with suricata 6.x?  If not, what 2.x version of Snort is recommended (I pay for a snort subscription)

I have also signed up for ET Telemetry - I see that the rules have downloaded fine (and they all say ET Telemetry) but when I created my policy, I didn't see any ET Telemetry entries in the list. I only saw ETpro entries which I have enabled.

I'm assuming that signing up for ET Telemetry and downloading and enabling those rules allows me to use the ETPro entries that show up policies?  The policies do not list any ET Telemetry rules, so I am confused.

Thank you so much.
Print
Go Up Pages1
User actions