[Oisf-users] Suricata and IP Reputation
Stanford Prescott
stan.prescott at gmail.com
Tue May 30 21:51:14 UTC 2017
Thank you, Kerry. That was really helpful.
@Andreas
Thank you for your response. I'm not sure what I did, but the rules seem to
be loading without errors now.
On Tue, May 30, 2017 at 2:27 PM, Andreas Herz <andi at geekosphere.org> wrote:
> On 21/05/17 at 15:31, Stanford Prescott wrote:
> > Also a related question...when I attempt to add and IP based rule file
> such
> > as the ET compromised.rules to use with Suricata, I get error messages
> for
> > all the rules in compromised.rules saying they are duplicate signatures.
> Do
> > I not have something configured correctly to use those ip based rules?
>
> Well looks like you have included them more then once, can you share the
> config where you define what rule files to use?
>
> --
> Andreas Herz
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20170530/3b89e1a4/attachment-0002.html>
More information about the Oisf-users
mailing list