From ea47308a8e56e633928f9d296dd0c6d4960436f8 Mon Sep 17 00:00:00 2001 From: robiscool Date: Tue, 2 Aug 2011 10:59:38 -0700 Subject: Change snort-dev to orion --- config/orionids-dev/snort_interfaces_global.php | 360 ++++++++++++++++++++++++ 1 file changed, 360 insertions(+) create mode 100644 config/orionids-dev/snort_interfaces_global.php (limited to 'config/orionids-dev/snort_interfaces_global.php') diff --git a/config/orionids-dev/snort_interfaces_global.php b/config/orionids-dev/snort_interfaces_global.php new file mode 100644 index 00000000..9af74503 --- /dev/null +++ b/config/orionids-dev/snort_interfaces_global.php @@ -0,0 +1,360 @@ +. + All rights reserved. + + Pfsense Old snort GUI + Copyright (C) 2006 Scott Ullrich. + + Pfsense snort GUI + Copyright (C) 2008-2012 Robert Zelaya. + + Redistribution and use in source and binary forms, with or without + modification, are permitted provided that the following conditions are met: + + 1. Redistributions of source code must retain the above copyright notice, + this list of conditions and the following disclaimer. + + 2. Redistributions in binary form must reproduce the above copyright + notice, this list of conditions and the following disclaimer in the + documentation and/or other materials provided with the distribution. + + 3. Neither the name of the pfSense nor the names of its contributors + may be used to endorse or promote products derived from this software without + specific prior written permission. + + THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, + INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY + AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE + AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, + OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF + SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS + INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN + CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) + ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE + POSSIBILITY OF SUCH DAMAGE. + +*/ + +require_once("guiconfig.inc"); +require_once("/usr/local/pkg/snort/snort_new.inc"); +require_once("/usr/local/pkg/snort/snort_gui.inc"); + +// set page vars + +$generalSettings = snortSql_fetchAllSettings('snortDB', 'SnortSettings', 'id', '1'); + +$snortdownload_off = ($generalSettings['snortdownload'] == 'off' ? 'checked' : ''); +$snortdownload_on = ($generalSettings['snortdownload'] == 'on' ? 'checked' : ''); +$oinkmastercode = $generalSettings['oinkmastercode']; + +$emergingthreatsdownload_off = ($generalSettings['emergingthreatsdownload'] == 'off' ? 'checked' : ''); +$emergingthreatsdownload_basic = ($generalSettings['emergingthreatsdownload'] == 'basic' ? 'checked' : ''); +$emergingthreatsdownload_pro = ($generalSettings['emergingthreatsdownload'] == 'pro' ? 'checked' : ''); +$emergingthreatscode = $generalSettings['emergingthreatscode']; + +$updaterules = $generalSettings['updaterules']; + +$rm_blocked = $generalSettings['rm_blocked']; + +$snortloglimit_off = ($generalSettings['snortloglimit'] == 'off' ? 'checked' : ''); +$snortloglimit_on = ($generalSettings['snortloglimit'] == 'on' ? 'checked' : ''); + +$snortloglimitsize = $generalSettings['snortloglimitsize']; + +$snortalertlogtype = $generalSettings['snortalertlogtype']; + +$forcekeepsettings_on = ($generalSettings['forcekeepsettings'] == 'on' ? 'checked' : ''); + +$snortlogCurrentDSKsize = round(exec('df -k /var | grep -v "Filesystem" | awk \'{print $4}\'') / 1024); + + + $pgtitle = "Services: Snort: Global Settings"; + include("/usr/local/pkg/snort/snort_head.inc"); + +?> + + + + + +
+
+
+ +
+
+



Please Wait...

+
+
+

+
+
+
+ + + + +
+ + + +
+ +
+
+ + + + + + + + +
+ +
+ +
+ +
+ + + + +
+ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
Please Choose The Type Of Rules You Wish To Download
Install Snort.org rules + + + + + + + +
+ > + Do NOT Install +
+ > + Install Basic Rules or Premium rules
+
+ + + + +
+ + Sign Up for a Basic Rule Account +

+ + Sign Up for Sourcefire VRT Certified Premium Rules. This Is Highly Recommended + +
+ + + + + + + +
Oinkmaster code
Code +
+ Obtain a snort.org Oinkmaster code and paste here. +
+
Install Emergingthreats rules + + + + + + + + + + +
+ > + Do NOT Install +
+ > + Install Basic Rules: No need to register
+
+ > + Install Pro rules: You need to register
+
+ + + + +
+ + Sign Up for Emerging Threats Pro Certified Premium Rules. This Is Highly Recommended + +
+ + + + + + + +
Pro rules code
Code +
+ Obtain a emergingthreatspro.com Pro rules code and paste here. +
+
Update rules automatically +
+ + Please select the update times for rules.
Hint: in most cases, every 12 hours is a good choice. + +
General Settings
Log Directory SizeLimit
+




+ Note:
Available space is MB + 		+ + + + + + + + + + +
+ > + Enable directory size limit (Default) +
+ > + Disable directory size limit

+ Warning: Pfsense Nanobsd should use no more than 10MB of space. +
 
+ + + + +
Size in MB + + Default is 20% of available space. +
+
Remove blocked hosts every +
+ Please select the amount of time you would likehosts to be blocked for.
Hint: in most cases, 1 hour is a good choice. +
Alerts file descriptiontype +
+ Please choose the type of Alert logging you will like see in your alert file.
Hint: Best pratice is to chose full logging.  + WARNING: On change, alert file will be cleared. +
Keep snort settings after deinstall + > + Settings will not be removed during deinstall. +
Save Settings + + +
+ + +  WARNING:
This will reset all global and interface settings. + 		+ Note:
+ Changing any settings on this page will affect all interfaces. Please, double check if your oink code is correct and the type of snort.org account you hold. +
+
+
+
+ + + + + + + + -- cgit v1.2.3