[Oisf-users] Can I block DDos attack via Suricata-IDS?

Cooper F. Nelson cnelson at ucsd.edu
Sun Feb 5 17:29:53 UTC 2017

Suricata cannot block DDos attacks directly.

A DDos attack is by definition a distributed attack from many clients
designed to disable a host or network.

Suricata by itself cannot block DDos attacks.  It can, however detect
them, at which point you can take administrative action to remediate
them.  This is what we do.


On 2/5/2017 5:13 AM, Jason Long wrote:
> Can anyone answer my question? As I sad, I use Suricata-IDS on Windows
> and config part not have any part like that.
> On Sunday, February 5, 2017 1:44 AM, Peter Manev <petermanev at gmail.com>
> wrote:

Cooper Nelson
Network Security Analyst
UCSD ITS Security Team
cnelson at ucsd.edu x41042

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20170205/6aaa1295/attachment-0002.sig>

More information about the Oisf-users mailing list