[Oisf-users] Block Ports via Suricata-IDS.

Andreas Herz andi at geekosphere.org
Sat Feb 4 21:14:21 UTC 2017

Where do you run suricata?
Blocking a specific port is better done in a firewall ruleset like

In IDS mode you won't block it, you could add a rule for IPS mode to
block everything to that port.

On 03/02/17 at 06:32, Jason Long wrote:
> Hello.I'm a nongeek in Suricata-IDS and I like to know how can I block Block a port like 445 via Suricata-IDS? Is it possible? Sorry if my question may silly.
> Thank you.

> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users

Andreas Herz

More information about the Oisf-users mailing list