Suricata still required?
All the posts I see about Suricata seem to be over 3 years old. If using Zenarmor do you still need to enable Suricata for IDS/IPS either on the lan or wan side?
-
Official comment
While Suricata prevents Server-side attacks, Zenarmor is an efficient application against client-side attacks.
As a best practice, you can run Zenarmor on LAN and Suricata on WAN at the same time.
Beware that, since they both use the same packet I/O interface (netmap) and this interface allows only a single application to be active at any time, you cannot run them on the same interface.
Comment actions
Please sign in to leave a comment.
Comments
1 comment