Skip to content

Initial Setup Suricata IDPS

Jump to bottom
Peter Manev edited this page Apr 16, 2019 · 8 revisions

NOTE All this is already taken care of during the first time install. However if you need to rerun the set up just due to change of the sniffing interface you could follow the instructions below.

Also you need to set up Suricata to listen/sniff traffic on the correct/desired interface. For that you can double click on the desktop icon Setup-IDS-Interface or run the setup script on the command line :

root@SELKS:/home/selks-user# selks-setup-ids-interface

### Setting up sniffing interface  ###


Please supply a network interface(s) to set up SELKS Suricata IDPS thread detection on
0: enp0s3
1: lo
Please type in interface or space delimited interfaces below and hit "Enter".
Example: eth1
OR
Example: eth1 eth2 eth3

Configure threat detection for INTERFACE(S):

When prompted - enter the interface name you would like to use for sniffing.

Done.

Clone this wiki locally