(ids) template for user defined rules

2026-03-15 09:04:39 +00:00 · 2016-02-04 09:47:39 +01:00 · 2016-02-04 09:47:39 +01:00 · bb2be7124a
commit bb2be7124a
parent f53146b3cf
1 changed files with 10 additions and 4 deletions
--- a/src/opnsense/service/templates/OPNsense/IDS/OPNsense.rules
+++ b/src/opnsense/service/templates/OPNsense/IDS/OPNsense.rules
@ -4,11 +4,17 @@
 # User defined rules
 #

-# -- SSL fingerprint rules
-{% if helpers.exists('OPNsense.IDS.rules.fingerprint') %}
-{%      for rule in helpers.toList('OPNsense.IDS.rules.fingerprint') %}
+# -- User defined rules
+{% if helpers.exists('OPNsense.IDS.userDefinedRules.rule') %}
+{%      for rule in helpers.toList('OPNsense.IDS.userDefinedRules.rule') %}
 {%          if rule.enabled|default('0') == '1' %}
-{{rule.action}}  tls any any -> any any (msg:"{{rule.description.replace('"','\"')}}"; tls.fingerprint:"{{rule.fingerprint.lower()}}"; sid:{{4294967295 - loop.index}}; rev:1;)
+{{rule.action}}  tls any any -> any any (msg:"{{rule.description.replace('"','\"')}}"; {%
+      if rule.fingerprint|default('') != "" %} tls.fingerprint:"{{rule.fingerprint.lower()}}";{% endif
+      %}{%
+      if rule.geoip|default('') != ""%} geoip:{% if rule.geoip_direction|default('') != '' %}{{rule.geoip_direction}},{% endif %}{{rule.geoip}} ;{% endif
+      %} sid:{{
+      4294967295 - loop.index
+      }}; rev:1;)
 {%          endif %}
 {%      endfor %}
 {% endif %}