diff --git a/setup/so-functions b/setup/so-functions
index cf50c887af..5908a8b7a0 100755
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -44,7 +44,7 @@ logCmd() {
 airgap_rules() {
 	# Copy the rules for detections if using Airgap
 	mkdir -p /nsm/rules
-	rsync -av --exclude='securityonion-resources' /root/SecurityOnion/agrules/ /nsm/rules/
+	rsync -av /root/SecurityOnion/agrules/ /nsm/rules/
 
 	# Copy over the securityonion-resources repo
 	rsync -av  /root/SecurityOnion/agrules/securityonion-resources/ /nsm/