Rule synchronization is currently blocked in suricata

[craigsmooth]

Version

2.4.200

Installation Method

Security Onion ISO image

Description

upgrading

Installation Type

Distributed

Location

on-prem with Internet access

Hardware Specs

Exceeds minimum requirements

CPU

16

RAM

128 GB

Storage for /

5 TB

Storage for /nsm

10 TB

Network Traffic Collection

tap

Network Traffic Speeds

Less than 1Gbps

Status

Yes, all services on all nodes are running OK

Salt Status

No, there are no failures

Logs

No, there are no additional clues

Detail

Since upgrading to 2.4.200, I am seeing an error in the detections page on the soc web app. For suricata it shows, "sync blocked" and hovering over the message shows "rule synchronization is currently blocked." Any idea on what could be causing this. Thank you!

Guidelines

• I have read the discussion guidelines at Read before posting! #1720 and assert that I have followed the guidelines.

[BSUNetSec]

just went through it so had the page still up

https://docs.securityonion.net/en/2.4/nids.html#syncblock

[craigsmooth]

Thank you! That's what I get for not reading the release notes.