Feature #6164
closed
- Related to Task #4772: tracking: parity between fields logged and fields available for detection added
- Status changed from New to In Review
- Subject changed from detect: new keyword flow.pkts_toclient to detect: new keyword flow.pkts_toclient to server and bytes as well
- Related to Feature #294: Limit inspection of a stream and/or rule... added
- Related to Feature #5646: rules: allow matching on flow pkts and bytes in either direction added
- Status changed from In Review to Closed
- Subject changed from detect: new keyword flow.pkts_toclient to server and bytes as well to rules: allow matching on flow pkts and bytes
This is not a subtask of elephant flow detection in #5645
This exists also on its own ;-)
Philippe Antoine wrote in #note-9:
This is not a subtask of elephant flow detection in #5645
This exists also on its own ;-)
ah ok. I changed it because its duplicate (#5646) was marked a subtask of #5645. Please change as seems fit to you.
Also available in: Atom
PDF