Suricata on Mikrotik(IDS+IPS) = Part 2 - Illustration

 Illustration

• Internet - represents the external network where incoming and outgoing traffic flows.

• 
  

• Mikrotik - acts as the gateway between the internal network and the internet. It manages the routing of traffic, enforces network policies, and provides connectivity to the internal devices.

• 
  

• Suricata IDS/IPS - positioned within the internal network, Suricata monitors the traffic flowing between the Firewall router and the internal devices. It analyzes this traffic for signs of malicious activities or security threats, providing an additional layer of security to the network.

• Client - a device or software application that requests services or resources from a server.

My Homelab Setup

• MikroTik hEX gr3 - as my main router(Check Mikrotik website more details
• Proxmox - open source type-1 hypervisor
• Ubuntu 18.04 - linux Operating System where the Suricata is located. it is installed as LXC container which has only 1 core and 1gb of RAM because I only have a small network.