What is Suricata 翻译

h1. What is Suricata
H1。什么是Suricata

The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. The Suricata Engine and the HTP Library are available to use under the GPLv2.
该项目Suricata引擎是一个开源的下一代入侵检测和防御引擎。该引擎是不打算取代或模仿现有的工具行业，但带来的新的想法和技术领域。Suricata引擎和HTP库可以在GPLv2使用。

IDS/IPS
IDS / IPS

Suricata is a rule-based ID/PS engine that utilises externally developed rule sets to monitor network traffic and provide alerts to the system administrator when suspicious events occur. Designed to be compatible with existing network security components, Suricata features unified output functionality and pluggable library options to accept calls from other applications. The initial release of Suricata runs on a Linux 2.6 platform that supports inline and passive traffic monitoring configuration capable of handling multiple gigabit traffic levels. Linux 2.4 is supported with reduced configuration functionality, such as no inline option. Available under Version 2 of the General Public License, Suricata eliminates the ID/PS engine cost concerns while providing a scalable option for the most complex network security architectures.
项目Suricata是基于规则的ID / PS引擎，利用外部开发的规则集来监控网络流量，并通知系统管理员当发生可疑事件。设计为兼容现有的网络安全组件，Suricata统一输出和可插拔的库选项接受从其他应用程序调用。Suricata的初始版本运行在Linux 2.6平台，支持内联和被动流量监测能够处理多个千兆流量配置。Linux 2.4支持减少配置功能，如没有内联选项。通用公共许可证的版本为2，Suricata消除ID / PS引擎的成本问题，同时为复杂网络安全体系结构提供了选项。

Multi-threading
多线程

As a multi-threaded engine, Suricata offers increased speed and efficiency in network traffic analysis. In addition to hardware acceleration (with hardware and network card limitations), the engine is build to utilise the increased processing power offered by the latest multi-core CPU chip sets. Suricata is developed for ease of implementation and accompanied by a step-by-step getting started documentation and user manual.
作为一个多线程引擎项目Suricata提供提高速度和效率的网络流量分析。除了硬件加速（硬件和网络卡的限制），引擎利用了最新的多核处理器芯片组来增加处理能力。Suricata开发易于实施，并且提供一步一步的入门文档和用户手册。

Development and features
发展与特点

The goal of the Suricata Project Phase 1 was to have a distributable and functional ID/PS engine. The initial beta release was made available for download on January 1, 2010. The engine supports or provides the following functionality: the latest Snort VRT, Snort logging, rule language options, multi-threading, hardware acceleration (with hardware and network card dependencies/limitations), unified output enabling interaction with external log management systems, IPv6, rule-based IP reputation, library plug-ability for interaction with other applications, performance statistics output, and a simple and effective getting started user manual.
Suricata 1期项目的目标是一个分配和功能ID / PS引擎。初始测试版本是可供下载于2010年1月1日。引擎支持或提供以下功能：最新的Snort VRT，Snort日志、规则语言选项，多线程，硬件加速（硬件和网络卡的依赖/限制），统一输出到外部日志管理系统，IPv6，基于IP规则，与其他应用程序库交互，性能统计数据的输出，和简单的入门用户手册。

By engaging the open source community and the leading ID/PS rule set resources available, OISF has built the Suricata engine to simplify the process of maintaining optimum security levels. Through strategic partnerships, OISF is leveraging the expertise of Emerging Threats ( www.emergingthreats.net) and other prominent resources in the industry to provide the most current and comprehensive rule sets available.
通过参与开源社区和领先的ID / PS集资源规则，OISF已建成项目Suricata引擎简化保持最佳安全水平的过程。通过STR战略合作伙伴关系，OISF是利用新兴威胁的专长（www.emergingthreats .net）和其他著名的资源在行业提供最新、最全面的规则集可使用。

The HTP Library is an HTTP normaliser and parser written by Ivan Ristic of Mod Security fame for the OISF. This integrates and provides very advanced processing of HTTP streams for Suricata. The HTP library is required by the engine, but may also be used independently in a range of applications and tools.
HTP库是一个HTTP 正常化解析器为OISF MOD安全。为Suricata提供非常先进的流处理。HTP是引擎必须的，但也可以独立使用的一系列应用程序和工具。