Suricata is a network Intrusion Detection/Prevention System and network security monitoring engine. It is installed in Byzantium by default.
The settings for Suricata can be found in the OPNsense web portal under Services > Intrusion Detection. OPNsense provides additional documentation on the use of Suricata here
Prerequisites
Setup
- Navigate to Services > Intrusion Detection > Administration in your OPNsense web portal and ensure the “Enabled” checkbox is checked.
- Go to the “Download” tab and click “Download & Update Rules” then select all rulesets and click “Enable Selected”
