From mboxrd@z Thu Jan  1 00:00:00 1970
From: Michael Tremer <michael.tremer@ipfire.org>
To: development@lists.ipfire.org
Subject: Re: [PATCH 2/2] Suricata: Add port 3128 (Transparent Proxy) to group
 of HTTP ports.
Date: Wed, 01 Apr 2020 11:54:15 +0100
Message-ID: <57236904-EC62-46CD-B94A-73226178F7DC@ipfire.org>
In-Reply-To: <93dc20f01caa8aa431e378e14bb9f2bc@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============9127417031010462902=="
List-Id: <development.lists.ipfire.org>

--===============9127417031010462902==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit


> On 1 Apr 2020, at 11:24, Arne Fitzenreiter <arne_f(a)ipfire.org> wrote:
> 
> I think it should be better to read the proxy config which port is used.
> Many installtions still use 800

Absolutely.

Why do we only add the transparent port here and not the default port?

-Michael

> 
> Arne
> 
> 
> Am 2020-04-01 11:02, schrieb Stefan Schantl:
>> Fixes #12308.
>> Signed-off-by: Stefan Schantl <stefan.schantl(a)ipfire.org>
>> ---
>> config/suricata/suricata.yaml | 2 +-
>> 1 file changed, 1 insertion(+), 1 deletion(-)
>> diff --git a/config/suricata/suricata.yaml b/config/suricata/suricata.yaml
>> index cb7ececb4..4a605c272 100644
>> --- a/config/suricata/suricata.yaml
>> +++ b/config/suricata/suricata.yaml
>> @@ -30,7 +30,7 @@ vars:
>>     ENIP_SERVER: "$HOME_NET"
>>   port-groups:
>> -    HTTP_PORTS: "[80,81]"
>> +    HTTP_PORTS: "[80,81,3128]"
>>     SHELLCODE_PORTS: "!80"
>>     ORACLE_PORTS: 1521
>>     SSH_PORTS: "[22,222]"


--===============9127417031010462902==--