Secure BootΒΆ
Modern Linux kernels prevent the loading of unsigned third party modules (like PF-RING) if UEFI Secure Boot is enabled. An example of this can be found here:
To avoid issues like this, modern versions of our Setup wizard now default to AF-PACKET instead of PF-RING for both Zeek and Suricata: