[Oisf-users] Block Ports via Suricata-IDS.
Andreas Herz
andi at geekosphere.org
Sat Feb 4 21:14:21 UTC 2017
Where do you run suricata?
Blocking a specific port is better done in a firewall ruleset like
iptables/nftables.
In IDS mode you won't block it, you could add a rule for IPS mode to
block everything to that port.
On 03/02/17 at 06:32, Jason Long wrote:
> Hello.I'm a nongeek in Suricata-IDS and I like to know how can I block Block a port like 445 via Suricata-IDS? Is it possible? Sorry if my question may silly.
> Thank you.
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
--
Andreas Herz
More information about the Oisf-users
mailing list