OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • Intrusion Detection and Prevention »
  • Suricata and time-out blocked ips and other questions
« previous next »
  • Print
Pages: [1]

Author Topic: Suricata and time-out blocked ips and other questions  (Read 2090 times)

simiki

  • Newbie
  • *
  • Posts: 3
  • Karma: 0
    • View Profile
Suricata and time-out blocked ips and other questions
« on: September 08, 2021, 12:38:31 pm »
Good morning,

   Before we start let me say that I love opnSense. Its interface is easy to use and it has many interesting packages: HaProxy, Let's encrypt, Monit, Postfix, Telegraf and so on.

   A couple of questions regarding Suricata:

    1- How can I know the IPS that have been blocked?
    2- Can I create a white-list of ips?
    3- is it possible create a time-out for blocked ips?


Thank you very much for your excellent work.

Simiki
Logged

simiki

  • Newbie
  • *
  • Posts: 3
  • Karma: 0
    • View Profile
Re: Suricata and time-out blocked ips and other questions
« Reply #1 on: September 24, 2021, 09:55:23 pm »
Hi again!

 Is it possible or no?

Thanks
Logged

XeroX

  • Full Member
  • ***
  • Posts: 105
  • Karma: 5
    • View Profile
Re: Suricata and time-out blocked ips and other questions
« Reply #2 on: September 28, 2021, 07:09:19 pm »
1) Check Rules and Policy Tab
2) Its called passlist.
3) Not out of the box. Whats the requirement here?
Logged

  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • Intrusion Detection and Prevention »
  • Suricata and time-out blocked ips and other questions
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2023 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy
    | XHTML | RSS | WAP2