Feature #2150
closed
Support for attaching Suricata to multiple NFQ's using the default startup script
Added by Mikael Keri over 7 years ago.
Updated about 6 years ago.
Description
The Ubuntu package comes with the file "/etc/default/suricata" , where you can set startup options.
Currently it supports that you can define the number of the NFQUEUE Suricata should attached itself to.
An enhancement would be to support multiple queues, maybe something like NFQUEUE=0-3, which would result in Suricata being attached to multiple queues, (-q 0 -q 1 -q 2 -q 3 ) as defined by the variable
I think a better approach would be to define a variable that overrides the scripts way of calling suricata. E.g. CUSTOM="-q 0 -q 1 -q 2" or CUSTOM="-i eth0 -i eth1".
@Peter Pan The new settings were easily applied and works as expected. Thank you! If you need more feedback please let me know.
- Target version changed from 70 to Packaging/PPA
This is has been updated as per the comments/requests here with a "CUSTOM.." variable in the default file setting in Suricata 4.1beta1 PPA packaging.
Feedback is much appreciated!
@Peter Pan I have tested and verified the new update using the CUSTOM variable and it works fine, thanks!
Thank you for the feedback Mikael !
As 4.1 has this feature included, I think you can go ahead and close this case
- Status changed from New to Closed
Also available in: Atom
PDF