Feature #2291
traffic-id: ruleset for traffic classification and bypass
Description
As discussed at SuriCon Prague, the goal is to start creating a ruleset for traffic classification and flow bypass.
Classification is mostly to add metadata to alerts/flows.
Flow bypass is a performance optimization.
This ticket will likely spin into a separate 'sub project'.
Related issues
History
Updated by Victor Julien about 1 year ago
- Related to Support #2309: SuriCon 2017 brainstorm added
Updated by Raymond Hansen 3 months ago
Needs proper description and sufficient examples (specifically bypass examples).