No way to enable Intrusion Detection Sync Firewall following sysadmin module upgrade


(Jean Sebastien Carle) #1

There is no “official” way to enable Intrusion Detection Sync Firewall following a sysadmin module upgrade if the option was not enabled prior to updating the module.

Before the update, the link in System Admin for Intrusion Detection would point to this page: /admin/config.php?display=sysadmin&view=intrusion_detection

Before

As you can see, there is a gear that we can click on to activate the following dialog:

Dialog

After the update, the link in System Admin for Intrusion Detection now points to this page: /admin/config.php?display=firewall&page=about&tab=intrusion_detection

After

So unless someone knows the URL for that previous page, there is no way to enable the Intrusion Detection Sync Firewall after an update. Confirmed with syadmin module version 15.0.21.17.


(Lorne Gaetz) #2

Firewall Advanced settings.


(Jean Sebastien Carle) #3

That was hidden :S, thanks.

Like lerules enable / disable, it would be great if there was a fwconsole command to enable this via the command line.

Usage:
firewall [options] [–] [] []…

Help:
Valid Commands:
disable : Disable the System Firewall. This will shut it down cleanly.
stop : Stop the System Firewall
start : Start (and enable, if disabled) the System Firewall
restart : Restart the System Firewall
lerules [enable] or [disable] : Enable or disable Lets Encrypt rules.
trust : Add the hostname or IP specified to the Trusted Zone
untrust : Remove the hostname or IP specified from the Trusted Zone
list [zone] : List all entries in zone ‘zone’
add [zone] [id id id…] : Add to ‘zone’ the IDs provided.
del [zone] [id id id…] : Delete from ‘zone’ the IDs provided.
fix_custom_rules : Create the files for the custom rules if they don’t exist and set the permissions and owners correctly.
sync : Synchronizes all selected zones of the firewall module with the intrusion detection whitelist.