suricata first

5 years ago · f35dc04942
2 changed files with 5 additions and 3 deletions
--- a/scripts/install.sh
+++ b/scripts/install.sh
@ -102,10 +102,10 @@ source ./scripts/subinstallers/platform.sh
				@@ -102,10 +102,10 @@ source ./scripts/subinstallers/platform.sh
 echo "Setting up firewall (iptables)"
 if [ ! -f "/etc/iptables/rules.v4" ]; then
    echo "Setting iptables rules..."
+    ./scripts/subinstallers/suricata.sh
    ./scripts/subinstallers/iptables.sh
    ./scripts/subinstallers/ip6tables.sh
    ./scripts/subinstallers/iptables_docker.sh
-    ./scripts/subinstallers/suricata.sh
    ./scripts/subinstallers/iptables_cleanup.sh
 else
    echo "iptables rules exist. Leaving alone."
--- a/scripts/subinstallers/suricata.sh
+++ b/scripts/subinstallers/suricata.sh
@ -1,5 +1,7 @@
				@@ -1,5 +1,7 @@
 #!/bin/bash

+set -e
+
 # minimal dependencies
 sudo -E apt-get -y install libpcre3 libpcre3-dbg libpcre3-dev build-essential libpcap-dev   \
                libyaml-0-2 libyaml-dev pkg-config zlib1g zlib1g-dev \
@ -34,6 +36,6 @@ else
				@@ -34,6 +36,6 @@ else
 fi

 # iptables
-sudo iptables -A INPUT -j NFQUEUE
-sudo iptables -I FORWARD -j NFQUEUE
+#sudo iptables -A INPUT -j NFQUEUE
+#sudo iptables -I FORWARD -j NFQUEUE
 #sudo iptables -I OUTPUT -j NFQUEUE