Project

General

Profile

Actions
Copy link

Bug #2973

closed
JS JS

the flow after match the rules

Bug #2973: the flow after match the rules

Added by John Smith almost 7 years ago. Updated over 2 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
John Smith
Target version:
TBD
Affected Versions:
4.0.5
Effort:
Difficulty:
Label:

Description

if a package match a rule and the rule's action is 'pass',then suricata will set this flow no need to detect. So when I change this rule's action to 'drop',packages won't detect the rules and just pass (even I change the package)

VJ Updated by Victor Julien almost 7 years ago Actions
Copy link
 #1

  • Assignee deleted (Victor Julien)
  • Target version deleted (4.1.5)
  • Effort deleted (high)

Can you provide a test case in https://github.com/OISF/suricata-verify ?

AH Updated by Andreas Herz almost 7 years ago Actions
Copy link
 #2

  • Assignee set to John Smith
  • Target version set to TBD

PA Updated by Philippe Antoine over 2 years ago Actions
Copy link
 #3

  • Status changed from New to Rejected

Looks like the rules were not reloaded, feel free to reopen with more details if needed :-)

Actions
Copy link

Also available in: PDF Atom