alihan/mistborn-security
1
0
Fork 0
mirror of https://gitlab.com/cyber5k/mistborn.git synced 2022-06-09 18:03:35 +03:00
Code Issues Projects Releases Wiki Activity

suricata rsyslog

Browse Source
This commit is contained in:
Steven Foerster
2021-02-22 19:42:12 -05:00
parent f1f06910b1
commit cb2be0a7b0
2 changed files with 10 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
scripts/conf/20-suricata.conf Normal file
View File

@@ -0,0 +1,2 @@
$template SuricataTemplate, "<%PRI%>%syslogtag:1:32%%msg:::sp-if-no-1st-sp%%msg%"
user.alert /var/log/suricata.log;SuricataTemplate

11
scripts/subinstallers/suricata.sh
View File

@@ -36,6 +36,11 @@ else
fi fi
# iptables # iptables
#sudo iptables -A INPUT -j NFQUEUE sudo iptables -A INPUT -j NFQUEUE
#sudo iptables -I FORWARD -j NFQUEUE sudo iptables -I FORWARD -j NFQUEUE
#sudo iptables -I OUTPUT -j NFQUEUE sudo iptables -I OUTPUT -j NFQUEUE
# rsyslog to create /var/log/suricata.log
sudo cp ./scripts/conf/20-suricata.conf /etc/rsyslog.d/
sudo chown root:root /etc/rsyslog.d/20-suricata.conf
sudo systemctl restart rsyslog