diff options
| author | Christian Poessinger <christian@poessinger.com> | 2022-07-21 20:26:08 +0200 |
|---|---|---|
| committer | Christian Poessinger <christian@poessinger.com> | 2022-07-21 20:26:08 +0200 |
| commit | 902586e248dd84883a097a3daca0b1129db25b38 (patch) | |
| tree | 0242eddb47ada1e9d937cb87fe0786c7be7cfae1 /data/templates/ids | |
| parent | a06a2b58cac1559a35d60916628a234359d213d9 (diff) | |
| download | vyos-1x-902586e248dd84883a097a3daca0b1129db25b38.tar.gz vyos-1x-902586e248dd84883a097a3daca0b1129db25b38.zip | |
fastnetmon: T4555: add IPv6 support
Diffstat (limited to 'data/templates/ids')
| -rw-r--r-- | data/templates/ids/fastnetmon.j2 | 7 | ||||
| -rw-r--r-- | data/templates/ids/fastnetmon_networks_list.j2 | 4 |
2 files changed, 4 insertions, 7 deletions
diff --git a/data/templates/ids/fastnetmon.j2 b/data/templates/ids/fastnetmon.j2 index e095b0786..005338836 100644 --- a/data/templates/ids/fastnetmon.j2 +++ b/data/templates/ids/fastnetmon.j2 @@ -1,14 +1,13 @@ # enable this option if you want to send logs to local syslog facility +logging:logging_level = debug logging:local_syslog_logging = on # list of all your networks in CIDR format -networks_list_path = /etc/networks_list - -# list networks in CIDR format which will be not monitored for attacks -white_list_path = /etc/networks_whitelist +networks_list_path = /run/fastnetmon/networks_list # Enable/Disable any actions in case of attack enable_ban = on +enable_ban_ipv6 = on ## How many packets will be collected from attack traffic ban_details_records_count = 500 diff --git a/data/templates/ids/fastnetmon_networks_list.j2 b/data/templates/ids/fastnetmon_networks_list.j2 index 1c81180be..5f1b3ba4d 100644 --- a/data/templates/ids/fastnetmon_networks_list.j2 +++ b/data/templates/ids/fastnetmon_networks_list.j2 @@ -1,6 +1,4 @@ -{% if network is vyos_defined(var_type=str) %} -{{ network }} -{% else %} +{% if network is vyos_defined() %} {% for net in network %} {{ net }} {% endfor %} |