Project

General

Profile

Actions
Copy link

Feature #2864

closed
DP VG

Suricata-update merging local rules without trying to fetch rules from sources outside (offline mode)

Feature #2864: Suricata-update merging local rules without trying to fetch rules from sources outside (offline mode)

Added by Darren pierre about 7 years ago. Updated over 6 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Vagisha Gupta
Target version:
1.1.0rc1
Effort:
Difficulty:
Label:

Description

Suricata-update merging local rules without trying to fetch rules from sources

VJ Updated by Victor Julien about 7 years ago Actions
Copy link
 #1

  • Priority changed from High to Normal

Can you explain what you mean? It's not clear to me what you're requesting.

DP Updated by Darren pierre about 7 years ago Actions
Copy link
 #2

Victor Julien wrote:

Can you explain what you mean? It's not clear to me what you're requesting.

Is there some way I can use suricata-update just for merging rules from my local machine without suricata-update trying to fetch rules from a url?

JI Updated by Jason Ish about 7 years ago Actions
Copy link
 #3

Like an offload mode? Use what it has cached instead of reaching out for an update? This is not an option now, but probably should be.

DP Updated by Darren pierre about 7 years ago Actions
Copy link
 #4

Jason Ish wrote:

Like an offload mode? Use what it has cached instead of reaching out for an update? This is not an option now, but probably should be.

yes some sort of offload mode , uses what it has cached locally and merges all the rules files specified into a new suricata.rules or specified rules file .Do you have any some kind of work around solution for this?

JI Updated by Jason Ish about 7 years ago Actions
Copy link
 #5

  • Subject changed from Suricata-update merging local rules without trying to fetch rules from sources outside to Suricata-update merging local rules without trying to fetch rules from sources outside (offline mode)

Oops. Meant to say offline mode.

Anyways, no. After it does go online once there is a 15 minute period where it will not. So repeated updates won't go online. But a code change will be required.

SB Updated by Shivani Bhardwaj almost 7 years ago Actions
Copy link
 #6

  • Assignee changed from Jason Ish to Vagisha Gupta
  • Target version set to TBD

SB Updated by Shivani Bhardwaj almost 7 years ago Actions
Copy link
 #7

  • Status changed from New to Resolved

SB Updated by Shivani Bhardwaj almost 7 years ago Actions
Copy link
 #8

  • Status changed from Resolved to Feedback

SB Updated by Shivani Bhardwaj almost 7 years ago Actions
Copy link
 #9

  • Status changed from Feedback to Resolved

SB Updated by Shivani Bhardwaj almost 7 years ago Actions
Copy link
 #10

  • Status changed from Resolved to Closed

JI Updated by Jason Ish over 6 years ago Actions
Copy link
 #11

  • Target version changed from TBD to 1.1.0rc1
Actions
Copy link

Also available in: PDF Atom