diff options
author | Scott Ullrich <sullrich@pfsense.org> | 2006-09-26 20:46:10 +0000 |
---|---|---|
committer | Scott Ullrich <sullrich@pfsense.org> | 2006-09-26 20:46:10 +0000 |
commit | 3691d2b4cc5d9f2635c80de0b7be377164517e1c (patch) | |
tree | 7289c68ef4f8598ed7faed755f143bf868e84d63 /packages/snort/snort.inc | |
parent | 1003dec108365f1ecc06eb840a0ee49d1d7bfb59 (diff) | |
download | pfsense-packages-3691d2b4cc5d9f2635c80de0b7be377164517e1c.tar.gz pfsense-packages-3691d2b4cc5d9f2635c80de0b7be377164517e1c.tar.bz2 pfsense-packages-3691d2b4cc5d9f2635c80de0b7be377164517e1c.zip |
Add all virtual ips and ip addresses from all optional interfaces.
Diffstat (limited to 'packages/snort/snort.inc')
-rw-r--r-- | packages/snort/snort.inc | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/packages/snort/snort.inc b/packages/snort/snort.inc index 12312b2e..e57e8df6 100644 --- a/packages/snort/snort.inc +++ b/packages/snort/snort.inc @@ -137,8 +137,23 @@ function generate_snort_conf() { $home_net .= "{$subnet}/{$ifcfg['subnet']} "; } + /* add all local ips to the whitelist */ + $wan_if = get_real_wan_interface(); + $ip = find_interface_ip($wan_if); + $home_net .= "{$ip} "; + + /* iterate all interfaces and add to whitelist */ + foreach($config['interfaces'] as $interface) + $home_net .= "{$interface['ipaddr']} "; + + /* iterate all vips and add to whitelist */ + if($config['virtualip']) + foreach($config['virtualip']['vip'] as $vip) + $home_net .= $vip['subnet'] . " "; + /* write out whitelist, convert spaces to carriage returns */ $whitelist_home_net = str_replace(" ", "\n", $home_net); + fwrite($whitelist, $whitelist_home_net); /* close file */ |