| Message ID | 20200401090207.3894-2-stefan.schantl@ipfire.org |
|---|---|
| State | Accepted |
| Headers |
Return-Path: <development-bounces@lists.ipfire.org> Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail01.haj.ipfire.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by web04.haj.ipfire.org (Postfix) with ESMTPS id 48sgF40tpGz3yBr for <patchwork@web04.haj.ipfire.org>; Wed, 1 Apr 2020 09:02:16 +0000 (UTC) Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [172.28.1.201]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail02.haj.ipfire.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mail01.ipfire.org (Postfix) with ESMTPS id 48sgF16pq5z2Pf; Wed, 1 Apr 2020 09:02:13 +0000 (UTC) Received: from mail02.haj.ipfire.org (localhost [127.0.0.1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 48sgF125dGz30DL; Wed, 1 Apr 2020 09:02:13 +0000 (UTC) Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail01.haj.ipfire.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 48sgDz2NrBz2yZd for <development@lists.ipfire.org>; Wed, 1 Apr 2020 09:02:11 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) server-digest SHA384) (Client did not present a certificate) by mail01.ipfire.org (Postfix) with ESMTPSA id 48sgDy6kq9z1LL; Wed, 1 Apr 2020 09:02:10 +0000 (UTC) DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003ed25519; t=1585731731; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=fOzTS8N2//ZBrR+PAtjM+bJyapz9SPZc4z+Fo+ghVNQ=; b=a2Gbsl8ejylpYFkSjMdUWy4J5UtWiumqQSY+JW4lj7RcZVqpcHkzy29+Rx6TWTz5s2uUUN 21hM72MEVGBFOlDw== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003rsa; t=1585731731; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=fOzTS8N2//ZBrR+PAtjM+bJyapz9SPZc4z+Fo+ghVNQ=; b=mcZey5/eGlG1md+/+0cdsYtES78AD16M2gWr3+msbRb7QUs5gQLtgBtNV6gUmjpG4aazQQ PePE47EOvTlRF7vfgFDy0gfa3F/cyD5EJhz/xLFlmsIMWT4hE4FEKmBM8Uwym/8j70TO1J MePJ8Gb9UE8KZuEpCRa+oW0WgtTZEek0xzKN/Zr47r6b3iAxJDiBuNi4TCgX/gsuVSkt/q u6wEg7i8hfeHCwuwgMFcqmB3634ms8uTaWebyAGMVJpzXs556QoNAL4Vzz09Q/7imNCljT AtFO+Ij+IzPM7mTxeSvqpyqPrKrHFiLc3Fu4PYXwUeYUbKxhppv5k2wdkjBjug== From: Stefan Schantl <stefan.schantl@ipfire.org> To: development@lists.ipfire.org Subject: [PATCH 2/2] Suricata: Add port 3128 (Transparent Proxy) to group of HTTP ports. Date: Wed, 1 Apr 2020 11:02:07 +0200 Message-Id: <20200401090207.3894-2-stefan.schantl@ipfire.org> In-Reply-To: <20200401090207.3894-1-stefan.schantl@ipfire.org> References: <20200401090207.3894-1-stefan.schantl@ipfire.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Authentication-Results: mail01.ipfire.org; auth=pass smtp.mailfrom=stefan.schantl@ipfire.org X-BeenThere: development@lists.ipfire.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: IPFire development talk <development.lists.ipfire.org> List-Unsubscribe: <https://lists.ipfire.org/mailman/options/development>, <mailto:development-request@lists.ipfire.org?subject=unsubscribe> List-Archive: <http://lists.ipfire.org/pipermail/development/> List-Post: <mailto:development@lists.ipfire.org> List-Help: <mailto:development-request@lists.ipfire.org?subject=help> List-Subscribe: <https://lists.ipfire.org/mailman/listinfo/development>, <mailto:development-request@lists.ipfire.org?subject=subscribe> Errors-To: development-bounces@lists.ipfire.org Sender: "Development" <development-bounces@lists.ipfire.org> |
| Series |
[1/2] Suricata: Add port 81 (UpdateAccelerator) to group of HTTP ports.
|
|
Commit Message
Stefan Schantl
April 1, 2020, 9:02 a.m. UTC
Fixes #12308.
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
---
config/suricata/suricata.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
Comments
I think it should be better to read the proxy config which port is used. Many installtions still use 800 Arne Am 2020-04-01 11:02, schrieb Stefan Schantl: > Fixes #12308. > > Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> > --- > config/suricata/suricata.yaml | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > > diff --git a/config/suricata/suricata.yaml > b/config/suricata/suricata.yaml > index cb7ececb4..4a605c272 100644 > --- a/config/suricata/suricata.yaml > +++ b/config/suricata/suricata.yaml > @@ -30,7 +30,7 @@ vars: > ENIP_SERVER: "$HOME_NET" > > port-groups: > - HTTP_PORTS: "[80,81]" > + HTTP_PORTS: "[80,81,3128]" > SHELLCODE_PORTS: "!80" > ORACLE_PORTS: 1521 > SSH_PORTS: "[22,222]"
> On 1 Apr 2020, at 11:24, Arne Fitzenreiter <arne_f@ipfire.org> wrote: > > I think it should be better to read the proxy config which port is used. > Many installtions still use 800 Absolutely. Why do we only add the transparent port here and not the default port? -Michael > > Arne > > > Am 2020-04-01 11:02, schrieb Stefan Schantl: >> Fixes #12308. >> Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> >> --- >> config/suricata/suricata.yaml | 2 +- >> 1 file changed, 1 insertion(+), 1 deletion(-) >> diff --git a/config/suricata/suricata.yaml b/config/suricata/suricata.yaml >> index cb7ececb4..4a605c272 100644 >> --- a/config/suricata/suricata.yaml >> +++ b/config/suricata/suricata.yaml >> @@ -30,7 +30,7 @@ vars: >> ENIP_SERVER: "$HOME_NET" >> port-groups: >> - HTTP_PORTS: "[80,81]" >> + HTTP_PORTS: "[80,81,3128]" >> SHELLCODE_PORTS: "!80" >> ORACLE_PORTS: 1521 >> SSH_PORTS: "[22,222]"
diff --git a/config/suricata/suricata.yaml b/config/suricata/suricata.yaml index cb7ececb4..4a605c272 100644 --- a/config/suricata/suricata.yaml +++ b/config/suricata/suricata.yaml @@ -30,7 +30,7 @@ vars: ENIP_SERVER: "$HOME_NET" port-groups: - HTTP_PORTS: "[80,81]" + HTTP_PORTS: "[80,81,3128]" SHELLCODE_PORTS: "!80" ORACLE_PORTS: 1521 SSH_PORTS: "[22,222]"