Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-05-07 23:58:51 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions1

fix bug suricata systemd

Browse source 
ethtool is unable to change interface settings
This commit is contained in:
t3chn0m4g3 2016-08-29 19:10:39 +00:00
parent 173e2c040b
commit 154ea080f6
1 changed files with 3 additions and 4 deletions

7
installer/data/systemd/suricata.service
View file

@ -8,10 +8,9 @@ Restart=always
ExecStartPre=-/usr/bin/docker stop suricata
ExecStartPre=-/usr/bin/docker rm -v suricata
# Get IF, disable offloading, enable promiscious mode
ExecStartPre=-myIF=$(/sbin/ip route | /bin/grep $(/bin/hostname -I | /usr/bin/awk '{print $1 }') | /usr/bin/awk '{print $3 }')
ExecStartPre=-/sbin/ethtool --offload $myIF rx off tx off
ExecStartPre=-/sbin/ethtool -K $myIF gso off gro off
ExecStartPre=-/sbin/ip link set $myIF promisc on
ExecStartPre=/bin/bash -c '/sbin/ethtool --offload $(/sbin/ip route | /bin/grep $(/bin/hostname -I | /usr/bin/awk \'{print $1 }\') | /usr/bin/awk \'{print $3 }\') rx off tx off'
ExecStartPre=/bin/bash -c '/sbin/ethtool -K $(/sbin/ip route | /bin/grep $(/bin/hostname -I | /usr/bin/awk \'{print $1 }\') | /usr/bin/awk \'{print $3 }\') gso off gro off'
ExecStartPre=/bin/bash -c '/sbin/ip link set $(/sbin/ip route | /bin/grep $(/bin/hostname -I | /usr/bin/awk \'{print $1 }\') | /usr/bin/awk \'{print $3 }\') promisc on'
ExecStartPre=/bin/bash -c '/usr/bin/clean.sh suricata off'
ExecStart=/usr/bin/docker run --name suricata --cap-add=NET_ADMIN --net=host --rm=true -v /data/suricata:/data/suricata dtagdevsec/suricata:latest1610
ExecStop=/usr/bin/docker stop suricata