Project

General

Custom queries

Profile

Actions
Copy link

Feature #6164

closed

Task #5645: tracking: elephant flow detection

rules: allow matching on flow pkts and bytes

Added by Philippe Antoine almost 2 years ago. Updated 9 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
8.0.0-beta1
Effort:
Difficulty:
Label:

Related issues 3 (1 open2 closed)

Related to Suricata - Task #4772: tracking: parity between fields logged and fields available for detectionAssignedVictor JulienActions
Related to Suricata - Feature #294: Limit inspection of a stream and/or rule...ClosedCommunity TicketActions
Related to Suricata - Feature #5646: rules: allow matching on flow pkts and bytes in either directionClosedShivani BhardwajActions
#1

Updated by Philippe Antoine almost 2 years ago

  • Related to Task #4772: tracking: parity between fields logged and fields available for detection added
#2

Updated by Philippe Antoine almost 2 years ago

  • Status changed from New to In Review
#3

Updated by Philippe Antoine almost 2 years ago

  • Subject changed from detect: new keyword flow.pkts_toclient to detect: new keyword flow.pkts_toclient to server and bytes as well
#4

Updated by Philippe Antoine almost 2 years ago

  • Related to Feature #294: Limit inspection of a stream and/or rule... added
#5

Updated by Philippe Antoine over 1 year ago

  • Related to Feature #5646: rules: allow matching on flow pkts and bytes in either direction added
#6

Updated by Philippe Antoine over 1 year ago

  • Status changed from In Review to Closed
#7

Updated by Shivani Bhardwaj 10 months ago

  • Parent task set to #5645
#8

Updated by Shivani Bhardwaj 10 months ago

  • Subject changed from detect: new keyword flow.pkts_toclient to server and bytes as well to rules: allow matching on flow pkts and bytes
Actions
Copy link

Also available in: Atom PDF