From 36b2b66a33c546b3d40e92ffbf508e46d747720e Mon Sep 17 00:00:00 2001
From: Ad Schellevis <ad@opnsense.org>
Date: Sun, 25 Feb 2024 18:09:12 +0100
Subject: [PATCH] Services: Intrusion Detection - set exception-policy to
 ignore as a precaution as suggested by @kulikov-a in
 https://github.com/opnsense/core/pull/7271

---
 src/opnsense/service/templates/OPNsense/IDS/suricata.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/opnsense/service/templates/OPNsense/IDS/suricata.yaml b/src/opnsense/service/templates/OPNsense/IDS/suricata.yaml
index 6e7caa13b..5179e9d33 100644
--- a/src/opnsense/service/templates/OPNsense/IDS/suricata.yaml
+++ b/src/opnsense/service/templates/OPNsense/IDS/suricata.yaml
@@ -1355,7 +1355,7 @@ legacy:
 # extra option: auto - which means drop-flow or drop-packet (as explained above)
 # in IPS mode, and ignore in IDS mode. Exception policy values are: drop-packet,
 # drop-flow, reject, bypass, pass-packet, pass-flow, ignore (disable).
-exception-policy: auto
+exception-policy: ignore
 
 # IP Reputation
 #reputation-categories-file: /usr/local/etc/suricata/iprep/categories.txt