Package: suricata
Version: 3.1.1-3
The provided systemd file uses to following lines to ensure suricata is started
after network configuration:
After=network.target
Requires=network.target
This should be changed to:
Requires=network-online.target
After=network.target network-online.target
I have encountered problems with the first version when using some interface
configuration scripts in (/etc/network/interfaces). To cite the problem
described here -> http://unix.stackexchange.com/a/126146 :
"On current systems, ordering after network.target just guarantees that the
network service has been started, not that there's some actual configuration.
You need to order after network-online.target and pull it in to achive that."
For suricatas af-packet mode (and other modes probably as well) the
configuration of the interface(s) has to be finished to start without throwing
errors.
Most of the time these two things happen very close to each other - but not if
you use configuring scripts or something similar that takes more time to
complete.
Robert Haist
-------------------------------------------------
# Please consider secure communication with PGP #
# PGP-Public-Key: https://db.tt/IfBskuvO
# PGP-Fingerprint:
2BC8 3F55 A400 7468 864C 680E 1B7C C8D4 D4E9 14AA
-------------------------------------------------
