snort3: minor tweaks to local.lua
* Use Boolean true for enable inline mode which is more intuitive that older ''
* Add skeleton section for openappid since it has been merged[1]
1. 2d4e7d5fd3
Signed-off-by: John Audia <therealgraysky@proton.me>
This commit is contained in:
John Audia
Rosen Penev
parent
7812b74746
commit
0c1425f8fe
1 changed files with 8 additions and 1 deletions
|
|
@ -2,7 +2,7 @@
|
||||||
|
|
||||||
-- switch tap to inline in ips and uncomment the below to run snort in inline mode
|
-- switch tap to inline in ips and uncomment the below to run snort in inline mode
|
||||||
--snort = {}
|
--snort = {}
|
||||||
--snort["-Q"] = ''
|
--snort["-Q"] = true
|
||||||
|
|
||||||
ips = {
|
ips = {
|
||||||
mode = tap,
|
mode = tap,
|
||||||
|
|
@ -50,3 +50,10 @@ file_policy = {
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
-- To use openappid with snort, install the openappid package and uncomment the below
|
||||||
|
--appid = {
|
||||||
|
-- app_detector_dir = '/usr/lib/openappid',
|
||||||
|
-- log_stats = true,
|
||||||
|
-- app_stats_period = 60,
|
||||||
|
--}
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue