[Oisf-users] Whitelist IP Confirmation
Mesra.net CEO
admin at mesra.my
Fri Sep 14 21:12:16 UTC 2018
Dear Suricata
My Suricata machine are work as standalone and not as IPS, what i mean is all the traffic are streaming from Mikrotik firewall to my Suricata machine and filter by some rules before sending trigger back to Mikrotik, my script will monitor anything from fast.log by the word [wDrop] and collect the ip and send back to Mikrotik to do blocking, so my question is how can i make a rules or long list of Whitelist IP and by that Suricata will filter all those Whitelist IP and not list as [wDrop] on fast.log ?
Please advice and thank you so much
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20180915/24b02a46/attachment.html>
More information about the Oisf-users
mailing list