CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #271 from Security-Onion-Solutions/feature/bpf-suricata-fix

Browse Source 
Suricata  - bpf hotfix
This commit is contained in:
weslambert
2020-01-28 22:13:20 -05:00
committed by GitHub
parent bf1187ad60 3925ed52c7
commit 8ba3b07c5e
1 changed files with 5 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
salt/suricata/init.sls
View File

@@ -18,7 +18,7 @@
{% set VERSION = salt['pillar.get']('static:soversion', 'HH1.1.4') %}
{% set MASTER = salt['grains.get']('master') %}
{% set BPF_NIDS = salt['pillar.get']('nids:bpf') %}
{% set BPF_STATUS = 0 %}
# Suricata
@@ -85,7 +85,9 @@ surithresholding:
# BPF compilation and configuration
{% if BPF_NIDS %}
{% set BPF_CALC = salt['cmd.script']('/usr/sbin/so-bpf-compile', interface + ' ' + BPF_NIDS|join(" ") ) %}
{% if BPF_CALC['stderr'] != "" %}
{% if BPF_CALC['stderr'] == "" %}
{% set BPF_STATUS = 1 %}
{% else %}
suribpfcompilationfailure:
test.configurable_test_state:
- changes: False
@@ -99,7 +101,7 @@ suribpf:
- name: /opt/so/conf/suricata/bpf
- user: 940
- group: 940
{% if BPF_CALC['stderr'] == "" %}
{% if BPF_STATUS %}
- contents_pillar: nids:bpf
{% else %}
- contents: