Project

General

Profile

Suricata » Suricata Installation »

RedHat Enterprise Linux 8

Install Requirements

Enable the CodeReady Repo

subscription-manager repos --enable codeready-builder-for-rhel-8-x86_64-rpms

Enabling the CodeReady repo requires that you have registered subscription-manager.

Install Required Packages

yum install \
    diffutils \
    file-devel \
    gcc \
    jansson-devel \
    make \
    nss-devel \
    libyaml-devel \
    libcap-ng-devel \
    libpcap-devel \
    pcre-devel \
    python3 \
    python3-pyyaml \
    rust-toolset \
    zlib-devel

Download Suricata

Suricata can be downloaded from the home page, https://suricata-ids.org. Curl can also be used:

curl -OL https://www.openinfosecfoundation.org/download/suricata-5.0.0.tar.gz

but please check the home page for the latest version.

Build and Install

Extract Suricata and build:

tar xvf suricata-5.0.0.tar.gz
cd suricata-5.0.0
./configure --sysconfdir=/etc --localstatedir=/var
make

Install as root or using sudo:

make install
make install-conf

Configure and Run

See https://suricata.readthedocs.io/en/latest/quickstart.html for further setup guidance.