OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • Intrusion Detection and Prevention »
  • Can't download rules and enable IDS
« previous next »
  • Print
Pages: [1]

Author Topic: Can't download rules and enable IDS  (Read 3049 times)

harsing

  • Newbie
  • *
  • Posts: 1
  • Karma: 0
    • View Profile
Can't download rules and enable IDS
« on: October 18, 2022, 09:05:40 am »
Hi,
When I try to download rules for IDS it just times out. Occasionally I get python errors. From log:

Code: [Select]
2022-10-18T08:50:12 Error configd.py Timeout (120) executing : ids list rulemetadata

2022-10-18T08:48:10 Error configd.py Timeout (120) executing : ids update

2022-10-16T23:00:05 Error configd.py [28fe2645-cd6e-4e97-8c16-5cd33c0fd03e] Script action failed with Command
'/usr/local/opnsense/scripts/suricata/listRuleMetadata.py ' returned non-zero exit status 1. at Traceback (most recent call last):
File "/usr/local/opnsense/service/modules/processhandler.py", line 482, in execute subprocess.check_call(script_command,
env=self.config_environment, shell=True, File "/usr/local/lib/python3.9/subprocess.py",
line 373, in check_call raise CalledProcessError(retcode, cmd) subprocess.
CalledProcessError: Command '/usr/local/opnsense/scripts/suricata/listRuleMetadata.py '
returned non-zero exit status 1.

Can someone point me in the right direction? I'm pretty new to OPNsense so I might have missed something basic.

Regards,
Matts
Logged

featheredfifth

  • Newbie
  • *
  • Posts: 6
  • Karma: 0
    • View Profile
Re: Can't download rules and enable IDS
« Reply #1 on: March 29, 2023, 10:43:13 am »
Quote
When I try to download rules for IDS it just times out. Occasionally I get python errors. basket random 
Hi everyone,
I have the same issue. Hope someone can explain in more detail.
Logged

Melroy vd Berg

  • Newbie
  • *
  • Posts: 6
  • Karma: 0
    • View Profile
    • Homepage
Re: Can't download rules and enable IDS
« Reply #2 on: July 16, 2024, 10:37:32 pm »
You need to "edit" the rule first and select "Enable" checkbox. Then try to press Download & Update Rules.. I know it's stupid.
Logged
Hardware: DEC3852

Greg_E

  • Sr. Member
  • ****
  • Posts: 342
  • Karma: 19
    • View Profile
Re: Can't download rules and enable IDS
« Reply #3 on: July 18, 2024, 04:03:29 pm »
You just need to enable the rule first, then you can download it and edit it later. That caught me when I went from testing to production hardware and free to Business and I forgot I have to enable the rule before it would download.

It does kind of make sense, no reason to download a rule if it isn't going to be enabled to alert or drop, this helps prevent the rule list from being really big, which should improve scanning time.
Logged

actresshear

  • Newbie
  • *
  • Posts: 1
  • Karma: 0
    • View Profile
    • moto x3m
Re: Can't download rules and enable IDS
« Reply #4 on: November 14, 2024, 11:01:31 am »
I also had the same problem and followed a few suggestions from everyone but the problem remained the same :'(
Logged

someone

  • Full Member
  • ***
  • Posts: 115
  • Karma: 2
    • View Profile
Re: Can't download rules and enable IDS
« Reply #5 on: November 21, 2024, 12:13:11 am »
at the top click to check all rules, all rules will get checkmark
At the top click on enable
With all rules enabled and with checkmarks then go to bottom and click download
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • Intrusion Detection and Prevention »
  • Can't download rules and enable IDS
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2