diff --git a/config/rootfiles/common/configroot b/config/rootfiles/common/configroot
index 5115f7e94..4c9f6fb62 100644
--- a/config/rootfiles/common/configroot
+++ b/config/rootfiles/common/configroot
@@ -1,6 +1,7 @@
 usr/sbin/convert-dmz
 usr/sbin/convert-outgoingfw
 usr/sbin/convert-portfw
+usr/sbin/convert-snort
 usr/sbin/convert-xtaccess
 usr/sbin/firewall-policy
 #var/ipfire
diff --git a/lfs/configroot b/lfs/configroot
index 4c99bded3..6f4dbd459 100644
--- a/lfs/configroot
+++ b/lfs/configroot
@@ -134,6 +134,9 @@ $(TARGET) :
 	echo  "POLICY=MODE2"		>> $(CONFIG_ROOT)/firewall/settings
 	echo  "POLICY1=MODE2"		>> $(CONFIG_ROOT)/firewall/settings
 
+	# Install snort to suricata converter.
+	cp $(DIR_SRC)/config/suricata/convert-snort	/usr/sbin/convert-snort
+
 	# Add conntrack helper default settings
 	for proto in FTP H323 IRC SIP TFTP; do \
 		echo "CONNTRACK_$${proto}=on" >> $(CONFIG_ROOT)/optionsfw/settings; \