Suricata: use suricata-update for rule management

As a bonus we can now run "suricata-update" using docker-exec, triggering both a rule update and a Suricata rule reload.
2025-07-02 01:27:27 -04:00 · 2020-11-26 18:10:16 +01:00
parent 2ecef8c607
commit 87a27e4f2b
9 changed files with 39 additions and 98 deletions
--- a/docker/suricata/dist/enable.conf
+++ b/docker/suricata/dist/enable.conf
@ -0,0 +1,3 @@
+# Since honeypot traffic is usually low, we can afford to enable
+# all the rules that are normally disabled for performance reasons.
+re:.