From cd35fb41102393f24293ee413b3c0f62a3a2d040 Mon Sep 17 00:00:00 2001
From: Ad Schellevis <ad@opnsense.org>
Date: Fri, 26 Jun 2015 18:59:39 +0200
Subject: [PATCH] (ids) generate rc config from template

---
 .../service/templates/OPNsense/IDS/rc.conf.d  | 21 +++++++++++++++++--
 1 file changed, 19 insertions(+), 2 deletions(-)

diff --git a/src/opnsense/service/templates/OPNsense/IDS/rc.conf.d b/src/opnsense/service/templates/OPNsense/IDS/rc.conf.d
index f3466181c..fe836cd3e 100644
--- a/src/opnsense/service/templates/OPNsense/IDS/rc.conf.d
+++ b/src/opnsense/service/templates/OPNsense/IDS/rc.conf.d
@@ -1,3 +1,20 @@
+{% set addFlags=[] %}
+{% if helpers.exists('OPNsense.IDS.general') and OPNsense.IDS.general.enabled|default("0") == "1" %}
 suricata_enable="YES"
-suricata_interface="em0"
-suricata_flags="-D -i em1 --pidfile /var/run/suricata_em1.pid"
+{% for intfName in OPNsense.IDS.general.interfaces.split(',') %}
+{%   if loop.index == 1 %}
+{# enable first interface #}
+suricata_interface="{{helpers.getNodeByTag('interfaces.'+intfName).if}}"
+{%   else %}
+{#   store additional interfaces to addFlags #}
+{%      do addFlags.append(helpers.getNodeByTag('interfaces.'+intfName).if) %}
+{%   endif %}
+{% endfor %}
+{#   append additional interfaces #}
+suricata_flags="{%
+   for intf in addFlags
+%} -D -i {{ intf }} --pidfile /var/run/suricata_{{ intf }}.pid  {% endfor
+%} "
+{% else %}
+suricata_enable="NO"
+{% endif %}