Feature #5647
open
Task #5645: tracking: elephant flow detection
rules: mark flow as elephant flow
Added by Victor Julien over 1 year ago.
Description
Idea here is that based on #5536, #3271, #5646 you can set a flag in the flow that is then added to eve.flow logs.
Also available in: Atom
PDF