suricata: Define bypass mark

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Reviewed-by: Peter Müller <peter.mueller@ipfire.org>
Tested-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>

diff --git a/config/suricata/suricata.yaml b/config/suricata/suricata.yaml
index 1ce013dc7ca10066b7613c828852fbc79081572a..f02b93d766a4035d6b2b8c8d2e451fa2d72e692f 100644 (file)
--- a/config/suricata/suricata.yaml
+++ b/config/suricata/suricata.yaml
@@ -348,8 +348,8 @@ nfq:
    mode: repeat
    repeat-mark: 2147483648
    repeat-mask: 2147483648
-#   bypass-mark: 1
-#   bypass-mask: 1
+   bypass-mark: 1073741824
+   bypass-mask: 1073741824
 #  route-queue: 2
 #  batchcount: 20
    fail-open: yes

diff --git a/src/initscripts/system/suricata b/src/initscripts/system/suricata
index 111bd9df3f27eecafa454cd135ba9deb910e231b..981471c7ca572cfe6973ec2329a4082bc7a3d5d5 100644 (file)
--- a/src/initscripts/system/suricata
+++ b/src/initscripts/system/suricata
@@ -37,6 +37,8 @@ enabled_ips_zones=()
 # Mark and Mask options.
 REPEAT_MARK="0x80000000"
 REPEAT_MASK="0x80000000"
+BYPASS_MARK="0x40000000"
+BYPASS_MASK="0x40000000"
 
 # PID file of suricata.
 PID_FILE="/var/run/suricata.pid"