IPFire Linux-Based Hardened Firewall Gets New Intrusion Prevention System | Linux Today

IPFire Linux-Based Hardened Firewall Gets New Intrusion Prevention System

Written By
MN
Marius Nestor
May 17, 2019

The most exciting thing about the IPFire 2.23 Core Update 131 release is that is ships with a new Intrusion Prevention System (IPS) that deeply inspects packets and prevents threats, thus making your networks more secure. IPFire previously used Snort as default Intrusion Detection System (IDS), but now it’s been replaced with Suricata. After upgrading to IPFire 2.23 Core Update 131, your Snort configurations will be automatically migrated to Suricata, which will enable it in monitoring mode only. You will have to disable the monitoring mode for the new Intrusion Prevention System to filter packets. Also, please note that Snort configurations won’t be migrated when you restore IPFire from an old backup.

MN

Marius Nestor

Linux Today Logo

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.