CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 09:42:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

Stop SOC prior to opening the firewall for analysts, this ensures no outside requests can be processed prior to the server rebooting

Browse Source
This commit is contained in:
Jason Ertel
2020-12-30 16:33:46 -05:00
parent 13f0ddabfc
commit df305c49a6
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
setup/so-setup
View File

@@ -845,6 +845,7 @@ else
[ -n "$TESTING" ] && logCmd so-test
export percentage=95 # set to last percentage used in previous subshell
so-soc-stop # Stop SOC so it doesn't accept external requests prior to the reboot
if [[ -n $ALLOW_ROLE && -n $ALLOW_CIDR ]]; then
set_progress_str 97 "Running so-allow -${ALLOW_ROLE} for ${ALLOW_CIDR}"
IP=$ALLOW_CIDR so-allow -$ALLOW_ROLE >> $setup_log 2>&1