Project

General

Profile

Actions
Copy link

Optimization #5047

closed
VJ OD

sip: implement pattern based protocol detection

Optimization #5047: sip: implement pattern based protocol detection

Added by Victor Julien about 4 years ago. Updated almost 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
OISF Dev
Target version:
8.0.0-beta1
Effort:
Difficulty:
Label:
Beginner

Description

SIP looks a lot like HTTP, so we can use HTTP like protocol detection to match SIP independent of port and fall back to the existing probing parser logic if that fails.

Related issues 1 (0 open1 closed)

Related to Suricata - Feature #3351: sip: parse traffic over tcpClosedGiuseppe LongoActions
Actions
Copy link

Also available in: PDF Atom