This Bash script downloads custom Suricata rulesets to an OPNsense device. It can be used to add rulesets to your Suricata IDS instance that aren't officially supported or available in the OPNsense GUI.
NOTE: This project is in no way affiliated with or supported by OPNsense or Deciso B.V. It is simply a helper script written by a happy user of OPNsense and provided to the community as-is, in the hopes that it may be useful.
- Install Bash:
pkg install bash- Install cURL:
pkg install curl-
Place the
ociru.shscript in a location accessible by root's cron daemon, e.g.,/usr/local/sbin/ociru.sh -
Test the update script:
bash /usr/local/sbin/ociru.sh- (Optional) Add a crontab entry for recurring updates:
crontab -eAppend the following entry to crontab (This example will run at 20:31 every evening):
31 20 * * * (/usr/local/sbin/ociru.sh) > /dev/nullThis script downloads the following rulesets:
This script appends the output of each run to a log file located at /var/log/ociru_update.log