lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-19 19:15:22 +00:00
Code Issues Packages Projects Releases Wiki Activity

(ids) work in progress query alert log configd action

Browse Source
This commit is contained in:
Ad Schellevis 2015-06-24 20:35:08 +00:00
parent e8da11e252
commit c63ef62075
2 changed files with 8 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/opnsense/scripts/suricata/queryAlertLog.py
View File

@ -37,7 +37,7 @@ import ujson
from lib.log import reverse_log_reader
from lib.params import updateParams
suricata_log = '/tmp/eve.json'
suricata_log = '/var/log/suricata/eve.json'
# handle parameters
parameters = {'limit':'0','offset':'0', 'filter':''}

7
src/opnsense/service/conf/actions.d/actions_ids.conf
View File

@ -16,6 +16,12 @@ parameters:
type:script
message:install suricata rules
[query.alerts]
command:/usr/local/opnsense/scripts/suricata/queryAlertLog.py
parameters:/limit %s /offset %s /filter %s
type:script_output
message:query suricata alerts
[stop]
command:/usr/local/etc/rc.d/suricata stop
parameters:
@ -39,3 +45,4 @@ command:/usr/local/etc/rc.d/suricata status
parameters:
type:script_output
message:get suricata daemon status