Feature #506: Update rules analyser after #494 changes - Suricata - Open Information Security Foundation

Actions

Copy link

Feature #506

closed

Update rules analyser after #494 changes

Added by Eric Leblond almost 12 years ago. Updated over 11 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Eric Leblond

Target version:

1.4rc1

Effort:

Difficulty:

Label:

Description

It is now possible to write rules such as:

alert ip6 any any -> any 22 (msg: "TEST IP6"; sid:2;)
alert tcp any any -> any any (msg: "TEST TCP 6"; l3_proto:ipv6; sid:12;)
alert http any any -> any 22 (msg: "TEST HTTP 6"; l3_proto:ip6; sid:14;)

The analyser may need to be update to reflect this.

Related issues 1 (0 open — 1 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Feature #506

Update rules analyser after #494 changes

Updated by Victor Julien over 11 years ago

Updated by Victor Julien over 11 years ago

Updated by Victor Julien over 11 years ago

Updated by Eric Leblond over 11 years ago

Updated by Victor Julien over 11 years ago

Updated by Victor Julien over 11 years ago