Project

General

Profile

Actions
Copy link

Task #5678

open

tracking: Parse protocols that are not over TCP/UDP

Added by Philippe Antoine about 3 years ago. Updated 6 days ago.

Status:
New
Priority:
Normal
Assignee:
Community Ticket
Target version:
TBD
Effort:
Difficulty:
Label:

Description

Like like LLDP directly over Ethernet.

This will require various lower level things to happen:
- "flow" tracking for ethernet addresses with some protocol specific identifiers?
- app layer API support
- output API support

This work will depend on an actual protocol being developed & contributed.

Related issues 3 (3 open0 closed)

Related to Suricata - Task #5488: Suricon 2022 brainstormAssignedVictor JulienActions
Related to Suricata - Task #4151: Research: New protocol supportNewCommunity TicketActions
Related to Suricata - Task #8123: Suricon 2025 BrainstormAssignedVictor JulienActions
Actions
Copy link
 #1

Updated by Philippe Antoine about 3 years ago

  • Related to Task #5488: Suricon 2022 brainstorm added
Actions
Copy link
 #2

Updated by Victor Julien about 3 years ago

  • Tracker changed from Feature to Task
  • Subject changed from Parse protocols that are not over TCP/UDP like LLDP directly over Ethernet to tracking: Parse protocols that are not over TCP/UDP
  • Description updated (diff)
  • Assignee changed from OISF Dev to Community Ticket
Actions
Copy link
 #3

Updated by Philippe Antoine about 2 years ago

  • Related to Task #4151: Research: New protocol support added
Actions
Copy link
 #4

Updated by Philippe Antoine 6 days ago

  • Related to Task #8123: Suricon 2025 Brainstorm added
Actions
Copy link
 #5

Updated by Philippe Antoine 6 days ago

LLDP mentionne at suricata 2025

Actions
Copy link
 #6

Updated by Philippe Antoine 6 days ago

CDP, HP Heartbeat

Actions
Copy link
 #7

Updated by Philippe Antoine 6 days ago

Also tunneled protocols : CAPWAP / Mobile IP

Actions
Copy link

Also available in: Atom PDF