webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-27 19:23:24 +02:00
Code Issues Packages Projects Releases Wiki Activity

ids-functions.pl: Set bypass flag for whitelisted hosts.

Browse Source 
When adding a host to the whitelist set the bypass flag to
immediate take the load from the IDS.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
This commit is contained in:
Stefan Schantl
2021-12-19 15:41:43 +01:00
parent 43d12991d1
commit c1ccae1ce3
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
config/cfgroot/ids-functions.pl
View File

@@ -1692,7 +1692,7 @@ sub generate_ignore_file() {
# Check if the address/network is valid. # Check if the address/network is valid.
if ((&General::validip($address)) || (&General::validipandmask($address))) { if ((&General::validip($address)) || (&General::validipandmask($address))) {
# Write rule line to the file to pass any traffic from this IP # Write rule line to the file to pass any traffic from this IP
print FILE "pass ip $address any -> any any (msg:\"pass all traffic from/to $address\"\; sid:$sid\;)\n"; print FILE "pass ip $address any -> any any (msg:\"pass all traffic from/to $address\"\; bypass; sid:$sid\;)\n";
# Increment sid. # Increment sid.
$sid++; $sid++;