Hello to all,
I just wanted to know that how can I have more details about attacks which suricata shows in ips logs section? Currently, there is not much info to analayze the attack. There is only source/destination IPs , rule name. Is there anything I should config the suricata in ipfire to show more details of connections.(like pcap file). Thanks