Suricata not working ..

Started by Rami, October 07, 2024, 08:51:57 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
October 07, 2024, 08:51:57 AM
Hello guys ,

im doing my graduation project and im using opnsense firewall thru gns3 v24.7 , so every time i try to enable the ids and check rule such as social media facebook, and i check the alert by accessing the site it dosent work no alert nothing at all

anyone with huge experince in the ids please contact me at discord : rami6425
October 08, 2024, 04:02:10 AM #1
Those rules are not enabled yet
October 08, 2024, 06:15:13 AM #2
you mean i need to check diffrent rule > i tried to enter and download the virus test for eicar but its the same no alert
October 09, 2024, 03:51:50 AM #3
No the rules are there, but not enabled
What I mean is they are not normally enabled
Those sid rule numbers are not enabled by default
One way is to go to rules and search for something like facebook in the search box
and the rules will come up
Me, I enabled all rules with policies
But if I want to use paypal or go to a social media site
I have to turn off one policy that blocks them, this one runs all rules
And turn on another policy, this one unblocks the rules where I want to go, like facebook
Print
Go Up Pages1
User actions