# New ports collection makefile for: snort_inline # Date created: 4 March 2005 # Whom: nick@rogness.net # # $FreeBSD$ # PORTNAME= snort_inline PORTVERSION= 2.4.5 PORTREVISION= 1 CATEGORIES= security MASTER_SITES= http://freebsd.rogness.net/ports/snort_inline/ MAINTAINER= nick@rogness.net COMMENT= An inline IPS system based on snort using ipfw LIB_DEPENDS= pcre.0:${PORTSDIR}/devel/pcre GNU_CONFIGURE= yes CONFIGURE_ENV= LDFLAGS="${LDFLAGS}" CONFIGURE_TARGET= --build=${MACHINE_ARCH}-portbld-freebsd${OSREL} CONFIGURE_ARGS+= --enable-inline --enable-ipfw LIB_DEPENDS+= dnet:${PORTSDIR}/net/libdnet OPTIONS= MYSQL "With MySQL support" off \ ODBC "With ODBC support" off \ POSTGRESQL "With POSTGRESQL support" off \ FLEXRESP "With flexible responses (resp. w/packet resets)" off .include .if defined(WITH_MYSQL) USE_MYSQL= yes CONFIGURE_ARGS+= --with-mysql=${LOCALBASE} .else CONFIGURE_ARGS+= --with-mysql=no .endif .if defined(WITH_ODBC) LIB_DEPENDS+= odbc.1:${PORTSDIR}/databases/unixODBC CONFIGURE_ARGS+= --with-odbc=${LOCALBASE} LDFLAGS+= ${PTHREAD_LIBS} .else CONFIGURE_ARGS+= --with-odbc=no .endif .if defined(WITH_POSTGRESQL) USE_PGSQL= yes CONFIGURE_ARGS+= --with-postgresql=${LOCALBASE} .if exists(/usr/lib/libssl.a) && exists(/usr/lib/libcrypto.a) LDFLAGS+= -lssl -lcrypto .endif .else CONFIGURE_ARGS+= --with-postgresql=no .endif .if defined(WITH_FLEXRESP) LIBNET_CONFIG?= ${LOCALBASE}/bin/libnet10-config .if exists(${LIBNET_CONFIG}) LIBNET_CFLAGS!= ${LIBNET_CONFIG} --cflags LIBNET_LIBS!= ${LIBNET_CONFIG} --libs LIBNET_INCDIR= ${LIBNET_CFLAGS:M-I*:S/-I//} LIBNET_LIBDIR= ${LIBNET_LIBS:M-L*:S/-L//} .endif BUILD_DEPENDS+= ${LIBNET_CONFIG}:${PORTSDIR}/net/libnet10 CONFIGURE_ARGS+= --enable-flexresp \ --with-libnet-includes=${LIBNET_INCDIR} \ --with-libnet-libraries=${LIBNET_LIBDIR} .endif MAN8= snort.8 snort_inline.8 DOCS= ChangeLog doc/AUTHORS doc/BUGS doc/CREDITS doc/faq* doc/NEWS \ doc/README* doc/TODO doc/USAGE doc/*.pdf RULE_PATH= ${DATADIR}/rules USE_RC_SUBR= snort.sh post-patch: ${REINPLACE_CMD} "s,%%PREFIX%%,${PREFIX}," ${WRKSRC}/src/snort.c ${REINPLACE_CMD} "s,/etc/snort_inline/drop-rules,${RULE_PATH}," ${WRKSRC}/etc/snort_inline.conf ${REINPLACE_CMD} "s,$RULE_PATH/classification.config,${DATADIR}/classification.config," ${WRKSRC}/etc/snort_inline.conf ${REINPLACE_CMD} "s,$RULE_PATH/reference.config,${DATADIR}/reference.config," ${WRKSRC}/etc/snort_inline.conf ${REINPLACE_CMD} -e "s/^unicode.map/\/usr\/local\/share\/snort_inline\/unicode.map/" ${WRKSRC}/etc/snort_inline.conf .if defined(WITH_FLEXRESP) ${REINPLACE_CMD} -e 's|libnet-config|${LIBNET_CONFIG}|g' ${WRKSRC}/configure .endif post-install: @${MKDIR} ${DATADIR} @${MKDIR} ${RULE_PATH} ${INSTALL_DATA} ${WRKSRC}/etc/classification.config \ ${DATADIR}/classification.config-sample [ -f ${DATADIR}/classification.config ] || \ ${CP} ${DATADIR}/classification.config-sample \ ${DATADIR}/classification.config ${INSTALL_DATA} ${WRKSRC}/etc/reference.config \ ${DATADIR}/reference.config-sample [ -f ${DATADIR}/reference.config ] || \ ${CP} ${DATADIR}/reference.config-sample ${DATADIR}/reference.config ${INSTALL_DATA} ${WRKSRC}/etc/threshold.conf \ ${DATADIR}/threshold.conf-sample [ -f ${DATADIR}/threshold.conf ] || \ ${CP} ${DATADIR}/threshold.conf-sample ${DATADIR}/threshold.conf ${INSTALL_DATA} ${WRKSRC}/etc/unicode.map \ ${DATADIR}/unicode.map .for f in snort.conf snort_inline.conf ${INSTALL_DATA} ${WRKSRC}/etc/${f} ${PREFIX}/etc/${f}-sample [ -f ${PREFIX}/etc/${f} ] || \ ${INSTALL_DATA} ${WRKSRC}/etc/${f} ${PREFIX}/etc/${f} .endfor .if !defined(NOPORTDOCS) @${MKDIR} ${DOCSDIR} cd ${WRKSRC} && ${INSTALL_DATA} ${DOCS} ${DOCSDIR} .endif @${CAT} ${PKGMESSAGE} .include