Hello Suricata Testing Community, Hello Stefan,
I just installed the “rc2” image on my production system on my desk.
I am afraid that I can confirm that no new connections are possible any more after Suricata is being started. I suppose this is due to some of the latest changes to the suricata configuration file. The iptables chains look fine and some other traffic continues to pass.
Not sure what I can do about this now.
I found that this is a bug: https://bugzilla.ipfire.org/show_bug.cgi?id=12002
-Michael
On 17 Feb 2019, at 11:58, Stefan Schantl stefan.schantl@ipfire.org wrote:
Hello list,
a short note from suricata development. I've uploaded the second release candidate, which fixes several issues and bugs.
Now, the "services.cgi" will correctly show the IPS as running, and logrotate and collectd will handle the correct service.
The new tarball (i586 for 32bit-systems, and x86_64) can be found here:
https://people.ipfire.org/~stevee/suricata/
To start testing download the tarball and place it on your IPFire system. Extract the tarball and launch the install (install.sh) script.
If you already have installed a previous test version or image, with the same steps as noted above you can update the the new version.
As always, if you prefer a fresh installation, the latest image can be grabbed from here:
https://nightly.ipfire.org/next-suricata/latest/x86_64/
Direct link for downloading the ISO image:
https://nightly.ipfire.org/next-suricata/latest/x86_64/ipfire-2.21.x86_64-fu...
Thanks for downloading and testing. There are no known bugs so far, as usual please file any bugs to our bugtracker ( https://bugzilla.ipfire.org) and share your feedback on the list.
Best regards,
-Stefan