From 19ef2da5fa728ab6828a77df1013f5dee7662d6c Mon Sep 17 00:00:00 2001
From: Christian Schmidt <christian.schmidt@ipfire.org>
Date: Mon, 21 Nov 2011 18:08:55 +0000
Subject: [PATCH] suricata: Changed some config options.

---
 suricata/suricata.conf            | 10 ++++++++++
 suricata/suricata.nm              |  2 +-
 suricata/systemd/suricata.service |  2 +-
 3 files changed, 12 insertions(+), 2 deletions(-)

diff --git a/suricata/suricata.conf b/suricata/suricata.conf
index d1d5a2579..8c2b1ed7b 100644
--- a/suricata/suricata.conf
+++ b/suricata/suricata.conf
@@ -255,6 +255,7 @@ flow-timeouts:
 stream:
   memcap: 33554432
   checksum_validation: yes
+  inline: yes
   reassembly:
     memcap: 67108864
     depth: 1048576
@@ -295,6 +296,15 @@ logging:
       enabled: no
       facility: local5
       format: "[%i] <%d> -- "
+  - drop:
+      enabled: yes
+      filename: drop.log
+      append: yes
+
+nfq:
+      mode: repeat
+      repeat_mark: 1
+      repeat_mask: 1
 
 # PF_RING configuration. for use with native PF_RING support
 # for more info see http://www.ntop.org/PF_RING.html
diff --git a/suricata/suricata.nm b/suricata/suricata.nm
index e9ac31fec..780c29509 100644
--- a/suricata/suricata.nm
+++ b/suricata/suricata.nm
@@ -5,7 +5,7 @@
 
 name      = suricata
 version   = 1.1
-release   = 1
+release   = 2
 
 groups     = Networking/IDS
 url        = http://www.openinfosecfoundation.org/
diff --git a/suricata/systemd/suricata.service b/suricata/systemd/suricata.service
index 4e0b68941..24cfa98cc 100644
--- a/suricata/systemd/suricata.service
+++ b/suricata/systemd/suricata.service
@@ -5,7 +5,7 @@ After=syslog.target network.target
 [Service]
 Type=forking
 ExecStart=/usr/bin/suricata -c /etc/suricata/suricata.conf -q 0 -q 1 -D
-ExecStartPost=/sbin/iptables -I INPUT -j NFQUEUE -âqueue-balance 0:1
+ExecStartPost=/sbin/iptables -I INPUT -mark ! --mark 1/1 -j NFQUEUE -âqueue-balance 0:1
 ExecReload=/bin/kill -HUP $MAINPID
 ExecStop=/sbin/iptables -D INPUT -j NFQUEUE -âqueue-balance 0:1
 ExecStopPost=/bin/kill $MAINPID
-- 
2.39.2