pfsense:suricata:pass_lists
This is an old revision of the document!
Table of Contents
PFSense - Suricata - Pass Lists
IMPORTANT: Passlists should not be used.
Realistically, about the only time that you should require a Passlist is if you are running a honeypot host and you actually want bad stuff to find its way to that host.
In that situation, a passlist makes sense.
For about any other case, it does not.
Use custom PASS rules instead if you really need passlist functionality.
Setup a Passlist
Services > Suricata > Pass Lists
Click Add
Change the Name as required.
Enter the Description.
Ensure that all items under the Auto-Generated IP Addresses are ticked.
Select an existing Alias within the Assigned Alias. Recommendation is that an Alias has already been created under Firewall > Aliass.
References
pfsense/suricata/pass_lists.1583092171.txt.gz · Last modified: 2020/07/15 09:30 (external edit)