Feature #5956: Report traffic with missing VLAN tag - Suricata - Open Information Security Foundation

Actions

Copy link

Feature #5956

open

JM OD

Report traffic with missing VLAN tag

Feature #5956: Report traffic with missing VLAN tag

Added by Joerg Manasse about 3 years ago. Updated about 3 years ago.

Status:

New

Priority:

Normal

Assignee:

OISF Dev

Target version:

TBD

Effort:

Difficulty:

Label:

Description

Sometimes outgoing packets have a VLAN tag, but the corresponding incoming packets do not.
There is a corresponding config parameter so that Suricata can deal with this.
However, it would be helpful to recognise such traffic (actively) in order to be able to react.

Report traffic with missing VLAN tag in the out or incoming packets of the same data stream.
Solution: Message in the log file or when called up directly with a corresponding (new) parameter.

History
Notes

Actions

Copy link

Also available in: PDF Atom

Project

General

Profile

Suricata

Custom queries

Feature #5956

Report traffic with missing VLAN tag

VJ Updated by Victor Julien about 3 years ago Actions
Copy link
#1

AH Updated by Andreas Herz about 3 years ago Actions
Copy link
#2

Project

General

Profile

Suricata

Custom queries

Feature #5956

Report traffic with missing VLAN tag

VJ Updated by Victor Julien about 3 years ago ActionsCopy link #1

AH Updated by Andreas Herz about 3 years ago ActionsCopy link #2

VJ Updated by Victor Julien about 3 years ago Actions
Copy link
#1

AH Updated by Andreas Herz about 3 years ago Actions
Copy link
#2