From 7e1c564ec8f25cb00c49a5ceecdb004c0b186555 Mon Sep 17 00:00:00 2001
From: Michael Tremer <michael.tremer@ipfire.org>
Date: Mon, 9 Sep 2024 23:08:11 +0200
Subject: [PATCH] suricata: Start the new watcher in the background

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
---
 src/initscripts/system/suricata | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/src/initscripts/system/suricata b/src/initscripts/system/suricata
index 40bd69c87b..455715d1b4 100644
--- a/src/initscripts/system/suricata
+++ b/src/initscripts/system/suricata
@@ -43,9 +43,6 @@ NFQ_OPTS=(
 	"--queue-bypass"
 )
 
-# PID file of suricata.
-PID_FILE="/var/run/suricata.pid"
-
 # Function to flush the firewall chains.
 flush_fw_chain() {
 	iptables -w -t mangle -F IPS
@@ -123,8 +120,7 @@ case "$1" in
 		if [ "$ENABLE_IDS" == "on" ]; then
 			# Start the IDS.
 			boot_mesg "Starting Intrusion Detection System..."
-			/usr/bin/suricata-watcher -c /etc/suricata/suricata.yaml $NFQUEUES
-			evaluate_retval
+			loadproc -b /usr/bin/suricata-watcher -c /etc/suricata/suricata.yaml $NFQUEUES
 
 			# Flush the firewall chain
 			flush_fw_chain
-- 
2.39.5