[Oisf-users] Suricata in Windows / IPS

Brant Wells bwells at tfc.edu
Thu Oct 31 13:09:35 UTC 2013

Hey Peter,

Thanks for that.  I installed the 32-bit version of Suricata on my Windows
8 box here, and it fired right up without any issues (despite the fact that
I am running 64 bit).  I do already have WinPCAP installed, so that
probably helps, lol.

For now, I will keep it in IDS mode, but I do have the WDK downloaded, at

What can I do about the Unified2 log files that are generated now?

On Sat, Oct 19, 2013 at 3:13 AM, Peter Manev <petermanev at gmail.com> wrote:

> On Fri, Oct 18, 2013 at 10:46 PM, Brant Wells <bwells at tfc.edu> wrote:
> > Hey Guys,
> >
> > I saw someone working on getting Suricata to run under Windows here a
> while
> > back.  Does it work in IPS mode, where it can actively block traffic, or
> is
> > it in IDS only mode (where it can only notify me of traffic) ?
> >
> Hi,
> I personally have not tried it in IPS mode on Windows in a while.
> This here:
> https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Windows
> is a a bit old guide, but in terms of enabling IPS mode - you could
> try to follow the section "Inline Mode"
> thanks
> --
> Regards,
> Peter Manev

~Brant Wells
Network Administrator
Toccoa Falls College
107 North Chapel Drive Toccoa Falls, GA 30598
706-886-7299 x5414 * bwells at tfc.edu
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20131031/a8430e33/attachment-0002.html>

More information about the Oisf-users mailing list