mirror of
https://github.com/telekom-security/tpotce.git
synced 2025-11-03 05:52:52 +00:00
87a27e4f2b
As a bonus we can now run "suricata-update" using docker-exec, triggering both a rule update and a Suricata rule reload.
12 lines
360 B
YAML
12 lines
360 B
YAML
disable-conf: /etc/suricata/disable.conf
|
|
enable-conf: /etc/suricata/enable.conf
|
|
#drop-conf: /etc/suricata/drop.conf
|
|
modify-conf: /etc/suricata/modify.conf
|
|
|
|
ignore:
|
|
- "*deleted.rules"
|
|
- "dhcp-events.rules" # DHCP is disabled in suricata.yaml
|
|
- "files.rules" # file-store is disabled in suricata.yaml
|
|
|
|
reload-command: suricatasc -c ruleset-reload-rules
|
|
|