Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
Firewall Allow rules and Suricata
« previous
next »
Print
Pages: [
1
]
Author
Topic: Firewall Allow rules and Suricata (Read 3226 times)
kapara
Jr. Member
Posts: 97
Karma: 3
Firewall Allow rules and Suricata
«
on:
November 25, 2018, 12:28:51 am »
Will rules enabling certain IP's through the firewall override rules from Suricata or will Suricata still block the traffic if set to block and the firewall has an allow for the same IP that Suricata might block based on the rule analysis?
Logged
AdSchellevis
Administrator
Hero Member
Posts: 907
Karma: 184
Re: Firewall Allow rules and Suricata
«
Reply #1 on:
November 25, 2018, 12:09:09 pm »
The traffic hits Suricata first, when a packet is dropped there it won't reach anything else.
Logged
Xames81
Newbie
Posts: 39
Karma: 1
Re: Firewall Allow rules and Suricata
«
Reply #2 on:
December 06, 2018, 10:06:08 pm »
Then a VNC connection could be dropped because suricata think is hacker connection not me?
thanks
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
Firewall Allow rules and Suricata