Project

General

Profile

Actions

Feature #1447

closed

Ability to reject ICMP traffic

Added by Alexander Gozman over 9 years ago. Updated over 9 years ago.

Status:
Closed
Priority:
Normal
Target version:
Effort:
Difficulty:
Label:

Description

Currently suricata can reject only TCP and UDP traffic: for TCP it sends RST, for UDP - ICMP error. However, snort handles "reject" like "send RST for TCP and port-unr for anything else". I think suricata should do the same, it can be useful for debugging purposes.

Actions

Also available in: Atom PDF