Bug #5490: Applayer Detect protocol only one direction - NFS - Suricata - Open Information Security Foundation

Actions

Copy link

Bug #5490

open

Applayer Detect protocol only one direction - NFS

Added by Orion Poplawski over 2 years ago.

Status:

New

Priority:

Normal

Assignee:

OISF Dev

Target version:

TBD

Affected Versions:

6.0.4

Effort:

Difficulty:

Label:

Description

Some NFS traffic generates the following alert:

[**] [1:324000010:1] SURICATA Applayer Detect protocol only one direction (non-SMTP) [**] [Classification: Generic Protocol Command Decode] [Priority: 3] {TCP}

The attached pcap file triggers it.

Files

nfs.pcap.xz (22.2 KB) nfs.pcap.xz

Orion Poplawski, 08/08/2022 09:01 PM

No data to display

Actions

Copy link

Also available in: Atom PDF

Project

General

Custom queries

Profile

Suricata

Bug #5490

Applayer Detect protocol only one direction - NFS