How to use this image start a suricata instance $ docker run -d --name suricata \ -v suricata_data:/var/log/suricata/ \ --net=host -e "INTERFACE=eth0" \ nsherron/suricata tail logs $ docker exec -it suricata tail -f /var/log/suricata/eve.json