Feature #6260: Support flow matching excluding packet recursion level - Suricata - Open Information Security Foundation

Actions

Copy link

Feature #6260

open

Support flow matching excluding packet recursion level

Added by Cole Dishington 9 months ago. Updated about 2 months ago.

Status:

In Review

Priority:

Normal

Assignee:

Cole Dishington

Target version:

8.0.0-beta1

Effort:

low

Difficulty:

low

Label:

Description

Add config for controlling the use of packet recursion level in the flow (and defrag) hashing. Packet recursion should be excluded from flow matching if egress packet pickup of tunneled packets occurs before the kernel has put the headers on, like when using netmap pipes, and the suricata device is a tunnel termination point.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Feature #6260

Support flow matching excluding packet recursion level

Updated by Cole Dishington 9 months ago

Updated by Jeff Lucovsky 9 months ago

Updated by Victor Julien 8 months ago

Updated by Victor Julien 7 months ago

Updated by Victor Julien 6 months ago

Updated by Cole Dishington 4 months ago

Updated by Philippe Antoine about 2 months ago