]> git.ipfire.org Git - people/ms/ipfire-2.x.git/commit
projects / people / ms / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9b113b4) | patch
suricata: Move the IPS into the mangle table
authorMichael Tremer <michael.tremer@ipfire.org>
Mon, 9 Sep 2024 09:49:30 +0000 (11:49 +0200)
committerMichael Tremer <michael.tremer@ipfire.org>
Sat, 21 Sep 2024 10:25:05 +0000 (12:25 +0200)
commit159069b9c1cd66b35b3943146dd9e0db6ece4176
tree971ee5f4d71ce4aa10c7759435f35e6ab52f5f95tree
parent9b113b4f2c9397faf4b946e6bb74f455e84fe9fecommit | diff
suricata: Move the IPS into the mangle table

This should make the IPS more efficient, we should have fewer rules and
the IPS will now sit at the edge of the networking stack as it will see
packets immediately when they come and and just before they leave.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
src/initscripts/system/firewall diff | blob | blame | history
src/initscripts/system/suricata diff | blob | blame | history
Michael's tree of IPFire 2.x.