Feature #2291
closed
traffic-id: ruleset for traffic classification and bypass
Added by Victor Julien over 7 years ago.
Updated 6 days ago.
Description
As discussed at SuriCon Prague, the goal is to start creating a ruleset for traffic classification and flow bypass.
Classification is mostly to add metadata to alerts/flows.
Flow bypass is a performance optimization.
This ticket will likely spin into a separate 'sub project'.
Related issues
1 (1 open — 0 closed)
- Related to Task #2309: SuriCon 2017 brainstorm added
Needs proper description and sufficient examples (specifically bypass examples).
- Target version changed from 70 to TBD
- Status changed from Assigned to Closed
Closing, even if this ruleset has gone stale.. It does exist and Suri does have support for it.
Also available in: Atom
PDF