How To Install Suricata on Ubuntu

Suricata is a Network Security Monitoring (NSM) tool that uses sets of community created and user defined signatures (also referred to as rules) to examine and process network traffic. Suricata can generate log events, trigger alerts, and drop traffic when it detects suspicious packets or requests to any number of different services running on a server.

You can deploy Suricata on a gateway host in a network to scan all incoming and outgoing network traffic from other systems, or you can run it locally on individual machines in either mode.

In this tutorial you will learn how to install Suricata, and how to customize some of its default settings on Ubuntu 20.04 to suit your needs

Commands Used
sudo add-apt-repository ppa:oisf/suricata-stable
sudo apt install suricata
sudo systemctl enable suricata.service
sudo systemctl stop suricata.service
ip -p -j route show default
sudo nano /etc/suricata/suricata.yaml
sudo kill -usr2 $(pidof suricata)
sudo suricata-update
sudo suricata-update list-sources
sudo suricata-update enable-source tgreen/hunting
sudo suricata -T -c /etc/suricata/suricata.yaml -v
sudo systemctl start suricata.service
sudo systemctl status suricata.service
sudo tail -f /var/log/suricata/suricata.log

Useful Links
VPS/VDS - https://www.mivocloud.com/

• #science_technology
• #network
• #security
• #vps
• #server
• #vds
• #hosting
• #suricata
• #ubuntu
• #linux