diff options
author | Scott Ullrich <sullrich@pfsense.org> | 2006-09-25 02:38:26 +0000 |
---|---|---|
committer | Scott Ullrich <sullrich@pfsense.org> | 2006-09-25 02:38:26 +0000 |
commit | 2277f7023ac0890878530b9d800a1ca178c4694d (patch) | |
tree | e1070075108cce3a2a4a24adf975429c8916f808 /packages/snort/snort.xml | |
parent | 04c0a98e3931b9fa0375e463d974f41665a762b2 (diff) | |
download | pfsense-packages-2277f7023ac0890878530b9d800a1ca178c4694d.tar.gz pfsense-packages-2277f7023ac0890878530b9d800a1ca178c4694d.tar.bz2 pfsense-packages-2277f7023ac0890878530b9d800a1ca178c4694d.zip |
* Split out functions to its own snort.inc file
* Start framework for downloading rules
Diffstat (limited to 'packages/snort/snort.xml')
-rw-r--r-- | packages/snort/snort.xml | 35 |
1 files changed, 2 insertions, 33 deletions
diff --git a/packages/snort/snort.xml b/packages/snort/snort.xml index e806cf61..650dd182 100644 --- a/packages/snort/snort.xml +++ b/packages/snort/snort.xml @@ -19,6 +19,7 @@ <rcfile>snort.sh</rcfile> <executable>snort</executable> </service> + <include_file>/usr/local/pkg/snort.xml</include_file> <tabs> <tab> <text>Snort Settings</text> @@ -47,39 +48,7 @@ <rcfile>snort.sh</rcfile> <executable>snort</executable> </service> - <custom_php_global_functions> - function sync_package_snort() { - $first = 0; - /* if list */ - $iflist = array("lan" => "LAN"); - for ($i = 1; isset($config['interfaces']['opt' . $i]); $i++) - $iflist['opt' . $i] = "opt{$i}"; - $whitelist = fopen("/var/db/whitelist","w"); - if(!$whitelist) - die "Cannot open whitelist for /var/db/writing."; - foreach($iflist as $if) { - /* XXX: write out if subnet */ - } - fclose($whitelist); - foreach($_POST['interface_array'] as $iface) { - $if = convert_friendly_interface_to_real_interface_name($iface); - if($if) { - $ifaces_final .= " -i " . $if; - $first = 1; - } - } - $start = "snort -c /usr/local/etc/snort/rules/snort.conf -l /var/log/snort " . $ifaces_final . " -D"; - $start .= ";snort2c -s -w /var/db/whitelist -a /var/log/snort/alert"; - write_rcfile(array( - "file" => "snort.sh", - "start" => $start, - "stop" => "/usr/bin/killall snort; killall snort2c" - ) - ); - start_service("snort"); - } - </custom_php_global_functions> - <custom_add_php_command> + <custom_add_php_command> sync_package_snort(); </custom_add_php_command> <custom_php_resync_command> |