IPFire Linux-Based Hardened Firewall Gets New Intrusion Prevention System
May 17, 2019, 10:00 (0 Talkback[s])
(Other stories by Marius Nestor)
The most exciting thing about the IPFire 2.23 Core Update 131 release is that is ships with a new Intrusion Prevention System (IPS) that deeply inspects packets and prevents threats, thus making your networks more secure. IPFire previously used Snort as default Intrusion Detection System (IDS), but now it's been replaced with Suricata. After upgrading to IPFire 2.23 Core Update 131, your Snort configurations will be automatically migrated to Suricata, which will enable it in monitoring mode only. You will have to disable the monitoring mode for the new Intrusion Prevention System to filter packets. Also, please note that Snort configurations won't be migrated when you restore IPFire from an old backup.