CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Stop SOC prior to opening the firewall for analysts, this ensures no outside requests can be processed prior to the server rebooting

Browse Source
This commit is contained in:
Jason Ertel
2020-12-30 16:33:46 -05:00
committed by William Wernert
parent 10d04f760d
commit bdbc637852
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
setup/so-setup
View File

@@ -843,6 +843,7 @@ else
[ -n "$TESTING" ] && logCmd so-test
export percentage=95 # set to last percentage used in previous subshell
so-soc-stop # Stop SOC so it doesn't accept external requests prior to the reboot
if [[ -n $ALLOW_ROLE && -n $ALLOW_CIDR ]]; then
set_progress_str 97 "Running so-allow -${ALLOW_ROLE} for ${ALLOW_CIDR}"
IP=$ALLOW_CIDR so-allow -$ALLOW_ROLE >> $setup_log 2>&1