diff --git a/src/opnsense/mvc/app/controllers/OPNsense/IDS/forms/generalSettings.xml b/src/opnsense/mvc/app/controllers/OPNsense/IDS/forms/generalSettings.xml
index 9889d040c..5f15ee560 100644
--- a/src/opnsense/mvc/app/controllers/OPNsense/IDS/forms/generalSettings.xml
+++ b/src/opnsense/mvc/app/controllers/OPNsense/IDS/forms/generalSettings.xml
@@ -17,6 +17,12 @@
checkbox
+
+ ids.general.syslog
+
+ checkbox
+
+
ids.general.MPMAlgo
diff --git a/src/opnsense/mvc/app/models/OPNsense/IDS/IDS.xml b/src/opnsense/mvc/app/models/OPNsense/IDS/IDS.xml
index bc774f5ef..94ea033e9 100644
--- a/src/opnsense/mvc/app/models/OPNsense/IDS/IDS.xml
+++ b/src/opnsense/mvc/app/models/OPNsense/IDS/IDS.xml
@@ -146,6 +146,10 @@
Please select a valid pattern matcher algorithm
+
+ 0
+ Y
+
diff --git a/src/opnsense/service/templates/OPNsense/IDS/suricata.yaml b/src/opnsense/service/templates/OPNsense/IDS/suricata.yaml
index 922e44daf..4d1a06b61 100644
--- a/src/opnsense/service/templates/OPNsense/IDS/suricata.yaml
+++ b/src/opnsense/service/templates/OPNsense/IDS/suricata.yaml
@@ -226,7 +226,7 @@ outputs:
# a line based alerts log similar to fast.log into syslog
- syslog:
- enabled: no
+ enabled: {% if OPNsense.IDS.general.syslog|default('0') == '0' %}no{% else %}yes{% endif %}
# reported identity to syslog. If ommited the program name (usually
# suricata) will be used.
#identity: "suricata"
@@ -740,7 +740,8 @@ logging:
enabled: yes
filename: /var/log/suricata.log
- syslog:
- enabled: no
+ enabled: {% if OPNsense.IDS.general.syslog|default('0') == '0' %}no{% else %}yes{% endif %}
+
facility: local5
format: "[%i] <%d> -- "