Project

General

Profile

Actions
Copy link

Bug #3346

closed

BPF filter on command line not honored for pcap file

Added by Eric Leblond about 5 years ago. Updated about 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Eric Leblond
Target version:
5.0.1
Affected Versions:
5.0.0
Effort:
Difficulty:
Label:
Needs backport

Description

A regression has been introduced in Suricata 4.1.0 (through 5.0). The BPF filter is not honored in pcap file mode if it is put on the command line.

For example, in the following command the filter is completely ignored:

suricata -r myfile.pcap port 22

Related issues 1 (0 open1 closed)

Copied to Suricata - Bug #3347: BPF filter on command line not honored for pcap file (4.1.x)ClosedEric LeblondActions
Actions
Copy link

Also available in: Atom PDF