Hello,
can you please help me with configuring Suricata (collection for pakon) to whitelist/ignore some traffic?
I have Zabbix monitoring system running in my network and it generates a lot of connection to many hosts. After few days, pakon.db grow to much and fill /tmp completely. And GUI interface became unusable as there is to much data…
Best way will be to ignore tcp ports 10050 and 10051 and do not include them in traffic inspection.
Any hints?
Thank you