From 8de70201a70e07d0929ae1cb6fa8954dde482c5e Mon Sep 17 00:00:00 2001
From: Ad Schellevis <ad@opnsense.org>
Date: Fri, 10 Jun 2016 09:53:37 +0200
Subject: [PATCH] (ids) add syslog settings, related to
 https://github.com/opnsense/core/issues/997

---
 .../OPNsense/IDS/forms/generalSettings.xml      | 12 ++++++++++++
 .../mvc/app/models/OPNsense/IDS/IDS.xml         | 17 +++++++++++++++++
 .../templates/OPNsense/IDS/newsyslog.conf       |  4 +++-
 3 files changed, 32 insertions(+), 1 deletion(-)

diff --git a/src/opnsense/mvc/app/controllers/OPNsense/IDS/forms/generalSettings.xml b/src/opnsense/mvc/app/controllers/OPNsense/IDS/forms/generalSettings.xml
index f60a19101..b28b4fe2e 100644
--- a/src/opnsense/mvc/app/controllers/OPNsense/IDS/forms/generalSettings.xml
+++ b/src/opnsense/mvc/app/controllers/OPNsense/IDS/forms/generalSettings.xml
@@ -25,4 +25,16 @@
         <help><![CDATA[Select interface(s) to use. When enabling IPS, only use physical interfaces here (no vlans etc).]]></help>
         <hint>Type or select interface.</hint>
     </field>
+    <field>
+        <id>ids.general.AlertLogrotate</id>
+        <label>Rotate log</label>
+        <type>dropdown</type>
+        <help><![CDATA[Rotate alert logs at provided interval.]]></help>
+    </field>
+    <field>
+        <id>ids.general.AlertSaveLogs</id>
+        <label>Save logs</label>
+        <type>text</type>
+        <help><![CDATA[Number of logs to keep.]]></help>
+    </field>
 </form>
diff --git a/src/opnsense/mvc/app/models/OPNsense/IDS/IDS.xml b/src/opnsense/mvc/app/models/OPNsense/IDS/IDS.xml
index b3f06aedd..a5545b5c3 100644
--- a/src/opnsense/mvc/app/models/OPNsense/IDS/IDS.xml
+++ b/src/opnsense/mvc/app/models/OPNsense/IDS/IDS.xml
@@ -119,6 +119,23 @@
                 <ValidationMessage>Related cron not found.</ValidationMessage>
                 <Required>N</Required>
             </UpdateCron>
+            <AlertLogrotate type="OptionField">
+              <Required>N</Required>
+              <default>W0D23</default>
+              <BlankDesc>Default</BlankDesc>
+              <OptionValues>
+                  <W0D23>Weekly</W0D23>
+                  <D0>Daily</D0>
+              </OptionValues>
+              <ValidationMessage>Please select a valid rotation</ValidationMessage>
+            </AlertLogrotate>
+            <AlertSaveLogs type="IntegerField">
+                <Required>N</Required>
+                <default>4</default>
+                <MinimumValue>1</MinimumValue>
+                <MaximumValue>1000</MaximumValue>
+                <ValidationMessage>Enter a valid number of logs to save</ValidationMessage>
+            </AlertSaveLogs>
         </general>
     </items>
 </model>
diff --git a/src/opnsense/service/templates/OPNsense/IDS/newsyslog.conf b/src/opnsense/service/templates/OPNsense/IDS/newsyslog.conf
index 192552c61..b3c9e3ab2 100644
--- a/src/opnsense/service/templates/OPNsense/IDS/newsyslog.conf
+++ b/src/opnsense/service/templates/OPNsense/IDS/newsyslog.conf
@@ -2,5 +2,7 @@
 {% if helpers.exists('OPNsense.IDS.general') and OPNsense.IDS.general.enabled|default("0") == "1" %}
 /var/log/suricata/stats.log	root:wheel	640	7	*	$D0	B	/var/run/suricata.pid	1
 /var/log/suricata.log		root:wheel	640	7	*	$D0	B	/var/run/suricata.pid	1
-/var/log/suricata/eve.json	root:wheel	640	4	*	$W0D23	B	/var/run/suricata.pid	1
+/var/log/suricata/eve.json	root:wheel	640	{{ OPNsense.IDS.general.AlertSaveLogs|default("4") }}	*	${{
+    OPNsense.IDS.general.AlertLogrotate|default("W0D23")
+}}	B	/var/run/suricata.pid	1
 {% endif %}