Feature #1447: Ability to reject ICMP traffic - Suricata - Open Information Security Foundation

Actions

Copy link

Feature #1447

closed

Ability to reject ICMP traffic

Added by Alexander Gozman about 9 years ago. Updated about 9 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Alexander Gozman

Target version:

2.1beta4

Effort:

Difficulty:

Label:

Description

Currently suricata can reject only TCP and UDP traffic: for TCP it sends RST, for UDP - ICMP error. However, snort handles "reject" like "send RST for TCP and port-unr for anything else". I think suricata should do the same, it can be useful for debugging purposes.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Feature #1447

Ability to reject ICMP traffic

Updated by Alexander Gozman about 9 years ago

Updated by Alexander Gozman about 9 years ago

Updated by Victor Julien about 9 years ago