webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-28 11:43:25 +02:00
Code Issues Packages Projects Releases Wiki Activity

suricata: Start the new watcher in the background

Browse Source 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
This commit is contained in:
Michael Tremer
2024-09-09 23:08:11 +02:00
parent 17887e69a8
commit 7e1c564ec8
1 changed files with 1 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
src/initscripts/system/suricata
View File

@@ -43,9 +43,6 @@ NFQ_OPTS=(
"--queue-bypass" "--queue-bypass"
) )
# PID file of suricata.
PID_FILE="/var/run/suricata.pid"
# Function to flush the firewall chains. # Function to flush the firewall chains.
flush_fw_chain() { flush_fw_chain() {
iptables -w -t mangle -F IPS iptables -w -t mangle -F IPS
@@ -123,8 +120,7 @@ case "$1" in
if [ "$ENABLE_IDS" == "on" ]; then if [ "$ENABLE_IDS" == "on" ]; then
# Start the IDS. # Start the IDS.
boot_mesg "Starting Intrusion Detection System..." boot_mesg "Starting Intrusion Detection System..."
/usr/bin/suricata-watcher -c /etc/suricata/suricata.yaml $NFQUEUES loadproc -b /usr/bin/suricata-watcher -c /etc/suricata/suricata.yaml $NFQUEUES
evaluate_retval
# Flush the firewall chain # Flush the firewall chain
flush_fw_chain flush_fw_chain