Project

General

Profile

Actions
Copy link

Feature #5674

open
PA OD

Support layered protocols

Feature #5674: Support layered protocols

Added by Philippe Antoine over 3 years ago. Updated 2 months ago.

Status:
Assigned
Priority:
Normal
Assignee:
OISF Dev
Target version:
TBD
Effort:
Difficulty:
Label:

Description

Like DCERPC can be directly over UDP, or over SMB

Related issues 2 (1 open1 closed)

Related to Suricata - Task #5488: Suricon 2022 brainstormAssignedVictor JulienActions
Related to Suricata - Feature #5773: doh: support DNS over HTTPS (DoH)ClosedPhilippe AntoineActions

PA Updated by Philippe Antoine over 3 years ago Actions
Copy link
 #1

  • Related to Task #5488: Suricon 2022 brainstorm added

PA Updated by Philippe Antoine over 3 years ago Actions
Copy link
 #2

Like web socket, COTP...

PA Updated by Philippe Antoine over 2 years ago Actions
Copy link
 #3

  • Related to Feature #5773: doh: support DNS over HTTPS (DoH) added

PA Updated by Philippe Antoine over 2 years ago Actions
Copy link
 #4

Idea to do this : create a synthetic sub flow, so that each flow has its own app-layer

PA Updated by Philippe Antoine over 2 years ago Actions
Copy link
 #5

Philippe Antoine wrote in #note-4:

Idea to do this : create a synthetic sub flow, so that each flow has its own app-layer

People may get confused if two flows get logged (one synthetic and a real one) with different app-layers

PA Updated by Philippe Antoine 2 months ago Actions
Copy link
 #6

  • Status changed from New to Assigned
Actions
Copy link

Also available in: PDF Atom