Project

General

Profile

Actions
Copy link

Bug #4267

closed
VJ JL

output: don't use /etc/protocols

Bug #4267: output: don't use /etc/protocols

Added by Victor Julien about 5 years ago. Updated almost 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Jeff Lucovsky
Target version:
7.0.0-beta1
Affected Versions:
Effort:
Difficulty:
Label:

Description

Using /etc/protocols leads to subtle differences in output. E.g. in ICMPv6 we have IPv6-ICMP on Ubuntu, but IPV6-ICMP on FreeBSD 12. Alpine Linux with musl doesn't define SCTP and so on.

Related issues 1 (0 open1 closed)

Related to Suricata - Bug #5072: detect/ip_proto: inconsistent behavior when specifying protocol by stringClosedJeff LucovskyActions

JL Updated by Jeff Lucovsky about 5 years ago Actions
Copy link
 #1

Suggest using the names/values in the authoritative source: https://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml#protocol-numbers-1

Or, did you have something else in mind -- start with ubuntu?

JL Updated by Jeff Lucovsky almost 5 years ago Actions
Copy link
 #2

  • Status changed from New to Assigned
  • Assignee set to Jeff Lucovsky

JL Updated by Jeff Lucovsky almost 5 years ago Actions
Copy link
 #4

  • Status changed from Assigned to In Review

JL Updated by Jeff Lucovsky almost 5 years ago Actions
Copy link
 #5

  • Status changed from In Review to Closed

JL Updated by Jeff Lucovsky about 4 years ago Actions
Copy link
 #6

  • Related to Bug #5072: detect/ip_proto: inconsistent behavior when specifying protocol by string added
Actions
Copy link

Also available in: PDF Atom