Login  Register

Re: More improvements and bugfixes for the shield

Posted by Roadrunnere42 on Nov 03, 2016; 6:18pm
URL: https://itus.accessinnov.com/More-improvements-and-bugfixes-for-the-shield-tp1228p1234.html

Hi Wisiwyg

At the end of fw-upgrade script is a section that checks if these  words are in the tmp/ogfile.log
FATAL ERROR

If thesewords are present then it renames the snort rule file and  deletes the snort rule, this is what I think is happening
mv -f /etc/snort/rules/snort.rules /etc/snort/rules/snort.rules.old
rm -f /etc/snort/rules/snort.rules

The reason I put this into the script was if after downloading the new snort rules an error occurred, this would stop the Shield connecting to the Internet.  New snort rules are downloaded and checks again for errors, this is done 3 times if it still fails then human intervention is required to sort the problem.

Have a look in the tmp/logfile.log for the words FATAL ERROR, I'm thinking that you may have had another error which the fw_upgrade script had seen and thus run the cleanup process. If this is the case then the script will have to be changed somehow to only trigger when it's the snort rules that are causing the fatal error

As for the fw_upgrade script being delete i have no idea.

Hope this helps

Roadrunnere42