From 79790c51a9fc40f4e8796d316cbba12aaaaa59a0 Mon Sep 17 00:00:00 2001 From: t3chn0m4g3 Date: Tue, 9 Aug 2016 23:26:03 +0000 Subject: [PATCH] suricata, find interface in absence of default gateway --- installer/bin/clean.sh | 5 ----- installer/data/systemd/suricata.service | 5 +++++ 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/installer/bin/clean.sh b/installer/bin/clean.sh index 6d573a4d..a38f7afe 100755 --- a/installer/bin/clean.sh +++ b/installer/bin/clean.sh @@ -88,11 +88,6 @@ fuSURICATA () { mkdir -p /data/suricata/log chmod 760 -R /data/suricata chown tpot:tpot -R /data/suricata - # Get IF, disable offloading, enable promiscious mode - myIF=$(ip route | grep $(hostname -I | awk '{print $1 }') | awk '{print $3 }') - /sbin/ethtool --offload $myIF rx off tx off - /sbin/ethtool -K $myIF gso off gro off - /sbin/ip link set $myIF promisc on } case $1 in diff --git a/installer/data/systemd/suricata.service b/installer/data/systemd/suricata.service index b8536621..cf0aa2dc 100644 --- a/installer/data/systemd/suricata.service +++ b/installer/data/systemd/suricata.service @@ -7,6 +7,11 @@ After=docker.service Restart=always ExecStartPre=-/usr/bin/docker stop suricata ExecStartPre=-/usr/bin/docker rm -v suricata +# Get IF, disable offloading, enable promiscious mode +ExecStartPre=-myIF=$(/sbin/ip route | /bin/grep $(/bin/hostname -I | /usr/bin/awk '{print $1 }') | /usr/bin/awk '{print $3 }') +ExecStartPre=-/sbin/ethtool --offload $myIF rx off tx off +ExecStartPre=-/sbin/ethtool -K $myIF gso off gro off +ExecStartPre=-/sbin/ip link set $myIF promisc on ExecStartPre=/bin/bash -c '/usr/bin/clean.sh suricata off' ExecStart=/usr/bin/docker run --name suricata --cap-add=NET_ADMIN --net=host --rm=true -v /data/suricata:/data/suricata dtagdevsec/suricata:latest1610 ExecStop=/usr/bin/docker stop suricata