Difference between revisions of "HowTo Setup Suricata - A Simple Live Configuration"

From NST Wiki
Jump to navigationJump to search
(Overview)
(Overview)
Line 1: Line 1:
 
__TOC__
 
__TOC__
 
== '''Overview''' ==
 
== '''Overview''' ==
'''[https://oisf.net/ Suricata]''' is a multi-threaded intrusion detection/prevention engine. This page shows one how to configure '''suricata''' to "run in pcap live mode" for creating alerts with and [https://en.wikipedia.org/wiki/Internet_Control_Message_Protocol ICMP Ping] rule.
+
'''[https://oisf.net/ Suricata]''' is a multi-threaded intrusion detection/prevention engine. This page shows one how to configure '''suricata''' to "run in pcap live mode" for creating alerts with an [https://en.wikipedia.org/wiki/Internet_Control_Message_Protocol ICMP Ping] rule.
  
 
== Configuration ==
 
== Configuration ==

Revision as of 12:02, 24 April 2024

Overview

Suricata is a multi-threaded intrusion detection/prevention engine. This page shows one how to configure suricata to "run in pcap live mode" for creating alerts with an ICMP Ping rule.

Configuration

Retrieved from "https://wiki.networksecuritytoolkit.org/nstwiki/index.php?title=HowTo_Setup_Suricata_-_A_Simple_Live_Configuration&oldid=10105"