[Oisf-users] host-os-policy and $home_net
Todor Petkov
petkovptodor at gmail.com
Tue Jul 19 19:17:01 UTC 2016
Hello,
I am using suricata 3.1.1 on Centos7 from the epel repo.
I have defined the $HOME_NET variable and I am trying to use it in
host-os-policy like this:
linux: [ $HOME_NET]
When I restart suricata, it fails to start with message:
Failed to add host "$HOME_NET" with policy "linux" to host info database
I have tried putting quotes around the variable, but it still fails. On
https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Suricatayaml#Host-os-policy
is said:
You can add your IP-address behind the name of the operating system you
make us
But there is no clear mention if I can cheat with $HOME_NET, so can I or
not?:)
Thanks in advance,
More information about the Oisf-users
mailing list