Feature #6261
open
Add GRE as a parsible protocol
Added by Thomas Winter 9 months ago.
Updated 6 months ago.
Description
This will allow rules wanting to match on GRE packets without having to specify the protocol number specifically.
For example:
alert gre any any -> any any (msg:"gre-decoder-events GRE packet too small"; decode-event:gre.pkt_too_small; sid:2200052; rev:1;)
Related issues
1 (1 open — 0 closed)
- Status changed from New to In Review
- Assignee changed from OISF Dev to Thomas Winter
Updated ticket to reflect status and assignee.
Added relationship to ticket about better documenting GRE
- Target version changed from TBD to 7.0.2
Added target version, to ensure this won't fall off our radar.
- Target version changed from 7.0.2 to 7.0.3
- Target version changed from 7.0.3 to 7.0.4
- Target version changed from 7.0.4 to 8.0.0-beta1
Also available in: Atom
PDF