webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-28 11:43:25 +02:00
Code Issues Packages Projects Releases Wiki Activity

ids-functions.pl: Introduce file for local rules.

Browse Source 
This file is to be used, to store customized IDS rules.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
This commit is contained in:
Stefan Schantl
2020-01-22 14:40:34 +01:00
committed by Arne Fitzenreiter
parent 140707831b
commit 612bb2dff9
1 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
config/cfgroot/ids-functions.pl
View File

@@ -67,6 +67,9 @@ our $ids_page_lock_file = "/tmp/ids_page_locked";
# Location where the rulefiles are stored. # Location where the rulefiles are stored.
our $rulespath = "/var/lib/suricata"; our $rulespath = "/var/lib/suricata";
# Location to store local rules. This file will not be touched.
our $local_rules_file = "$rulespath/local.rules";
# File which contains the rules to whitelist addresses on suricata. # File which contains the rules to whitelist addresses on suricata.
our $whitelist_file = "$rulespath/whitelist.rules"; our $whitelist_file = "$rulespath/whitelist.rules";
@@ -581,6 +584,9 @@ sub _cleanup_rulesdir() {
# Skip rules file for whitelisted hosts. # Skip rules file for whitelisted hosts.
next if ("$rulespath/$file" eq $whitelist_file); next if ("$rulespath/$file" eq $whitelist_file);
# Skip rules file with local rules.
next if ("$rulespath/$file" eq $local_rules_file);
# Delete the current processed file, if not, exit this function # Delete the current processed file, if not, exit this function
# and return an error message. # and return an error message.
unlink("$rulespath/$file") or return "Could not delete $rulespath/$file. $!\n"; unlink("$rulespath/$file") or return "Could not delete $rulespath/$file. $!\n";