Bug #4440: eve: log if flow had gap - Suricata - Open Information Security Foundation

Actions

Copy link

Bug #4440

closed

eve: log if flow had gap

Added by Eric Leblond almost 3 years ago. Updated over 1 year ago.

Status:

Closed

Priority:

Normal

Assignee:

Eric Leblond

Target version:

7.0.0-beta1

Affected Versions:

Effort:

Difficulty:

Label:

Description

It is currently not possible to know if a flow had a gap. As a result it may be hard to debug a suricata setup to know which flow are badly captured and maybe should be bypassed/dropped.

History
Notes
Property changes

Actions

Copy link

Updated by Victor Julien almost 2 years ago

Target version set to 7.0.0-beta1

https://github.com/OISF/suricata/pull/6077

Actions

Copy link

Updated by Victor Julien almost 2 years ago

Subject changed from Log if flow had gap to eve: log if flow had gap

Actions

Copy link

Updated by Victor Julien over 1 year ago

Status changed from In Review to Closed

https://github.com/OISF/suricata/pull/7956

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Bug #4440

eve: log if flow had gap

Updated by Victor Julien almost 2 years ago

Updated by Victor Julien almost 2 years ago

Updated by Victor Julien over 1 year ago