Irregular Expressions

Feb 20 2010   10:33PM GMT

Installing Suricata on FreeBSD – Part 1

Dan O'Connor Dan O'Connor Profile: Dan O'Connor

Installation of Suricata on FreeBSD i386.

Packages needed.

  • PCRE
  • libyaml
  • libnet

Step by step.

cd /usr/ports/devel/pcre/

make install clean

cd /usr/ports/textproc/libyaml/

make install clean

cd /usr/ports/net/libnet/

make install clean

mkdir /usr/local/pkgs/

cd /usr/local/pkgs/


tar -zvf suricata-0.8.1.tar.gz

cd suricata-0.8.1

./configure && make && make install

Move the config file to somewhere nice

cp suricata.yaml /usr/local/etc/

vi /usr/local/etc/suricata.yaml

Change `default-rule-path: /etc/suricata/rules/` and `classification-file: /etc/suricata/classification.config`, lets put them in the proper place.


mkdir /usr/local/etc/suricata/rules

mkdir /var/log/suricata

We can populate the rules folder with something while we are at it.

cd /usr/local/etc/suricata/


tar -xvf emerging.rules.tar.gz

You are also going to need some files from the snort ruleset release, go over to and register.
Get the latest release and unpack it just like the emerging set.

cd /usr/local/etc/suricata/
tar -xvf snortrules-snapshot-2.8.tar.gz

You really don’t need the entire set you just need one file specifically, the classification.config file. But we will pick that up in part 2.

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: