I have a few servers behind my firewall (web, email, TeamSpeak, my Synology NAS, Unifi Controller for various family Unifi things I manage.) Do I need Suricata? No I can probably accomplish everything I need to with pfBlocker-NG (namely locking those services down to only being accessible within the US…or better yet the Great Lakes region).
You are right however, Suricata is fun to play with, but when I was running pfSense on an old Mac mini, I think Suricata was more of a pain due to the false positives, than it was beneficial.
Are you suggesting I go to the SG-1100 because I don’t really need Suricata?