OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • Intrusion Detection and Prevention »
  • Firewall Allow rules and Suricata
« previous next »
  • Print
Pages: [1]

Author Topic: Firewall Allow rules and Suricata  (Read 3241 times)

kapara

  • Jr. Member
  • **
  • Posts: 97
  • Karma: 3
    • View Profile
Firewall Allow rules and Suricata
« on: November 25, 2018, 12:28:51 am »
Will rules enabling certain IP's through the firewall override rules from Suricata or will Suricata still block the traffic if set to block and the firewall has an allow for the same IP that Suricata might block based on the rule analysis?
Logged

AdSchellevis

  • Administrator
  • Hero Member
  • *****
  • Posts: 907
  • Karma: 184
    • View Profile
Re: Firewall Allow rules and Suricata
« Reply #1 on: November 25, 2018, 12:09:09 pm »
The traffic hits Suricata first, when a packet is dropped there it won't reach anything else.
Logged

Xames81

  • Newbie
  • *
  • Posts: 39
  • Karma: 1
    • View Profile
Re: Firewall Allow rules and Suricata
« Reply #2 on: December 06, 2018, 10:06:08 pm »
Then a VNC connection could be dropped because suricata think is hacker connection not me?

thanks
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • Intrusion Detection and Prevention »
  • Firewall Allow rules and Suricata
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2