User Tools

Site Tools


pfsense:suricata:pass_lists

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
pfsense:suricata:pass_lists [2020/03/01 20:20] peterpfsense:suricata:pass_lists [2020/07/15 09:30] (current) – external edit 127.0.0.1
Line 2: Line 2:
  
 <WRAP alert> <WRAP alert>
-**IMPORTANT:**  Passlists should not be used.+**IMPORTANT:**  Passlists should **NOT** be used.
  
 Realistically, about the only time that you should require a Passlist is if you are running a honeypot host and you actually want bad stuff to find its way to that host. Realistically, about the only time that you should require a Passlist is if you are running a honeypot host and you actually want bad stuff to find its way to that host.
Line 19: Line 19:
 ==== Setup an Alias for Custom IP Addresses ==== ==== Setup an Alias for Custom IP Addresses ====
  
-<code> 
-Firewall > Alias > IP 
-</code> 
  
-Click **Add**+Navigate to **Firewall -> Alias -> IP**
  
-Change the **Name** as required. +  * Click **Add** 
- +  * Change the **Name** as required. 
-Enter the **Description**. +  Enter the **Description**. 
- +  Add in Hosts as needed.
-Add in Hosts as needed.+
  
 ---- ----
Line 35: Line 31:
 ==== Setup the Passlist ==== ==== Setup the Passlist ====
  
-<code> +Navigate to **Services > Suricata > Pass Lists**.
-Services > Suricata > Pass Lists +
-</code>+
  
-Click **Add** +  * Click **Add** 
- +  Change the **Name** as required. 
-Change the **Name** as required. +  Enter the **Description**. 
- +  Ensure that all items under the **Auto-Generated IP Addresses** are ticked. 
-Enter the **Description**. +  Select an existing Alias within the Assigned Alias.
- +
-Ensure that all items under the **Auto-Generated IP Addresses** are ticked. +
- +
-Select an existing Alias within the Assigned Alias.+
  
 ---- ----
Line 53: Line 43:
 ==== Enable use of this Passlist ==== ==== Enable use of this Passlist ====
  
-<code> +Navigate to **Services -> Suricata -> Interfaces**.
-Services > Suricata > Interfaces   +
-</code>+
  
-Against the Interface to apply this Passlist to, such as WAN, click on the **Edit** option under **Actions**. +  * Against the Interface to apply this Passlist to, such as WAN, click on the **Edit** option under **Actions**. 
- +  Within the "Networks Suricata Should Inspect and Protect" section, select the Passlist instead of the Default. 
-Within the "Networks Suricata Should Inspect and Protect" section, select the Passlist instead of the Default. +    * Home Net 
- +    * External net
-  * Home Net +
-  * External net+
  
 ---- ----
Line 68: Line 54:
 ==== Restart ==== ==== Restart ====
  
-<code> +Navigate to **Services -> Suricata -> Interfaces**.
-Services > Suricata > Interfaces  +
-</code> +
  
-Against the Interface to apply this Passlist to, such as WAN, click on the **Restart** option under **Suricata Status**.+  * Against the Interface to apply this Passlist to, such as WAN, click on the **Restart** option under **Suricata Status**.
  
 ---- ----
pfsense/suricata/pass_lists.1583094030.txt.gz · Last modified: 2020/07/15 09:30 (external edit)

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki