The XXX_PORTS variable is used to identify the port numbers used by different services. The !$HOME_NET assigned to the EXTERNAL_NET variable represents a network other than the local network. The HOME_NET variable needs to specify the network that Suricata checks. The location of the configuration file is:/etc/suricata/suricara.yaml, the default-log-dir is where the log of suricata is located.īelow the vars section, you will find several variables that are important to Suricata. Install the rule base-Rules will be stored in/etc/suricata/rules: Install the default configuration file:ĥ. Or directly install full make install-full (if you execute this command, the following two commands can be ignored)Ĥ. configure -sysconfdir=/etc -localstatedir=/var, Download the Suricata source code, then build it, Sudo apt-get install wget build-essential libpcre3-dev libpcre3-dbg automake autoconf libtool libpcap-dev libnet1-dev libyaml-dev zlib1g-dev libcap-ng-dev libjansson-devĢ. Sudo yum install wget libpcap-devel libnet-devel pcre-devel gcc-c++ automake autoconf libtool make libyaml-devel zlib-devel file-devel jansson-devel nss-devel
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |