diff options
| author | robiscool <robrob2626@yahoo.com> | 2009-10-06 15:13:43 -0700 |
|---|---|---|
| committer | robiscool <robrob2626@yahoo.com> | 2009-10-06 15:13:43 -0700 |
| commit | a39d18d35f155660bcba150985a330285d6df6cf (patch) | |
| tree | 2bd40b4b5e3b2ea1cf95fc8cf67553755f3eb874 /config/snort/snort_dynamic_ip_reload.php | |
| parent | 9fa04cd2b2e77a32bee61d5ebb64295ff05b7e8c (diff) | |
| download | pfsense-packages-a39d18d35f155660bcba150985a330285d6df6cf.tar.gz pfsense-packages-a39d18d35f155660bcba150985a330285d6df6cf.tar.bz2 pfsense-packages-a39d18d35f155660bcba150985a330285d6df6cf.zip | |
snort snort-dev, do not clear snort2c table on filter reloads, add icmp packets
Diffstat (limited to 'config/snort/snort_dynamic_ip_reload.php')
| -rw-r--r-- | config/snort/snort_dynamic_ip_reload.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/config/snort/snort_dynamic_ip_reload.php b/config/snort/snort_dynamic_ip_reload.php index 7933ba16..0fad085b 100644 --- a/config/snort/snort_dynamic_ip_reload.php +++ b/config/snort/snort_dynamic_ip_reload.php @@ -3,7 +3,7 @@ /* $Id$ */ /* snort_dynamic_ip_reload.php - Copyright (C) 2006 Scott Ullrich + Copyright (C) 2006 Scott Ullrich and Robert Zeleya All rights reserved. Redistribution and use in source and binary forms, with or without @@ -29,6 +29,7 @@ */ /* NOTE: this file gets included from the pfSense filter.inc plugin process */ +/* NOTE: file location /usr/local/pkg/pf, all files in pf dir get exec on filter reloads */ require_once("/usr/local/pkg/snort.inc"); require_once("service-utils.inc"); @@ -38,12 +39,11 @@ require_once("config.inc"); if($config['interfaces']['wan']['ipaddr'] == "pppoe" or $config['interfaces']['wan']['ipaddr'] == "dhcp") { create_snort_conf(); - mwexec("/sbin/pfctl -t snort2c -T flush"); exec("killall -HUP snort"); /* define snortbarnyardlog_chk */ $snortbarnyardlog_info_chk = $config['installedpackages']['snortadvanced']['config'][0]['snortbarnyardlog']; if ($snortbarnyardlog_info_chk == on) - exec("/usr/bin/killall barnyard2; /usr/local/bin/barnyard2 -c /usr/local/etc/barnyard2.conf -d /var/log/snort -f snort.u2 -w /usr/local/etc/snort/barnyard2.waldo -D -q\n"); + exec("killall -HUP barnyard2"); } ?>
\ No newline at end of file |