From ac14b5f2424d0bd4f9800ff3f7ff592d0dc5d94a Mon Sep 17 00:00:00 2001
From: Steven Foerster <steven@cyber5k.com>
Date: Sat, 20 Feb 2021 10:16:26 -0500
Subject: [PATCH] suricata iptables rules

---
 scripts/install.sh                | 4 ++++
 scripts/subinstallers/suricata.sh | 5 +++++
 2 files changed, 9 insertions(+)

diff --git a/scripts/install.sh b/scripts/install.sh
index a90220c..9528e4a 100755
--- a/scripts/install.sh
+++ b/scripts/install.sh
@@ -103,6 +103,10 @@ echo "Setting up firewall (iptables)"
 if [ ! -f "/etc/iptables/rules.v4" ]; then
     echo "Setting iptables rules..."
     ./scripts/subinstallers/iptables.sh
+    ./scripts/subinstallers/ip6tables.sh
+    ./scripts/subinstallers/iptables_docker.sh
+    ./scripts/subinstallers/suricata.sh
+    ./scripts/subinstallers/iptables_cleanup.sh
 else
     echo "iptables rules exist. Leaving alone."
 fi
diff --git a/scripts/subinstallers/suricata.sh b/scripts/subinstallers/suricata.sh
index aee8f64..56faf3c 100644
--- a/scripts/subinstallers/suricata.sh
+++ b/scripts/subinstallers/suricata.sh
@@ -32,3 +32,8 @@ else
     echo "Basic Suricata installation"
     sudo -E apt-get install suricata
 fi
+
+# iptables
+sudo iptables -I INPUT -j NFQUEUE
+sudo iptables -I FORWARD -j NFQUEUE
+sudo iptables -I OUTPUT -j NFQUEUE