Snort / Suricata Load?

qlander · November 11, 2023, 9:11am

Hi there,

I’m looking at installing either Snort or Suricata on a Pi-4 (8GB) with DietPi OS (buster).

I was wondering if anyone has already installed/tested either Snort or Suricata and able to give some insights into load?

Looking at performance from the occasional intrusion, to flooding (particularly when under heavy load/DDoS or otherwise, and what the i can handle under before dropping/mishandling intrusions, etc.).

Thanks

Joulinar · November 11, 2023, 9:34am

Hope you are not really planning to use Buster as it’s quite an old Debian release and we will drop support soon.

qlander · November 12, 2023, 11:12am

just haven’t upgrade the pi’s yet, i guess i can then test one with suricata

WarHawk · November 13, 2023, 4:26am

Shouldn’t be a problem…are you going to install ARM64?

qlander · November 19, 2023, 5:42am

I believe so - nice link