[Oisf-users] Suricata and IP Reputation

Stanford Prescott stan.prescott at gmail.com
Tue May 30 21:51:14 UTC 2017

Thank you, Kerry. That was really helpful.


Thank you for your response. I'm not sure what I did, but the rules seem to
be loading without errors now.

On Tue, May 30, 2017 at 2:27 PM, Andreas Herz <andi at geekosphere.org> wrote:

> On 21/05/17 at 15:31, Stanford Prescott wrote:
> > Also a related question...when I attempt to add and IP based rule file
> such
> > as the ET compromised.rules to use with Suricata, I get error messages
> for
> > all the rules in compromised.rules saying they are duplicate signatures.
> Do
> > I not have something configured correctly to use those ip based rules?
> Well looks like you have included them more then once, can you share the
> config where you define what rule files to use?
> --
> Andreas Herz
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20170530/3b89e1a4/attachment-0002.html>

More information about the Oisf-users mailing list