Mirrored_Repos/unifios-utilities
1
0
Fork 0
mirror of https://github.com/unifi-utilities/unifios-utilities.git synced 2024-08-30 18:32:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
fd3f0b1a1d
unifios-utilities/suricata/on_boot.d/25-suricata.sh
John Dorman fd3f0b1a1d Suricata support
2020-08-27 02:46:17 -07:00

28 lines
906 B
Bash
Raw Blame History

#!/bin/sh
APP_PID="/run/suricata.pid"
echo "#!/bin/sh
CUSTOM_RULES=\"/mnt/data/suricata-rules\"
for file in \"\$CUSTOM_RULES\"/*.rules
do
if [ -f \"\$file\" ]; then
cp \"\$file\" \"/run/ips/rules/\$(basename \"\$file\")\"
echo \" - \$(basename \"\$file\")\" >> /run/ips/config/rules.yaml
fi
done
CONTAINER=suricata
if podman container exists \${CONTAINER}; then
podman rm -f \${CONTAINER}
fi
podman run --network=host --privileged --name \${CONTAINER} --rm -it -v /run:/var/run/ -v /run:/run -v /usr/share/ubios-udapi-server/ips/:/usr/share/ubios-udapi-server/ips/ jasonish/suricata:5.0.3-arm64v8 /usr/bin/suricata \"\$@\"" > /tmp/suricata.sh
chmod +x /tmp/suricata.sh
cp /usr/bin/suricata /tmp/suricata.backup # In case you want to move back without rebooting
ln -f -s /tmp/suricata.sh /usr/bin/suricata
if [ ! -z "$APP_PID" ]; then
killall -9 suricata
rm -f APP_PID
fi
Reference in New Issue View Git Blame Copy Permalink