Feature #7701: firewall: configurable default policies - Suricata - Open Information Security Foundation

Actions

Copy link

Feature #7701

open

firewall: configurable default policies

Added by Victor Julien 3 months ago.

Status:

Feedback

Priority:

Normal

Assignee:

Victor Julien

Target version:

TBD

Effort:

Difficulty:

Label:

Description

For discussion. There are 2 ideas here:
1. allow different actions than plain drop: e.g. reject.
2. allow default accept:hook hooks so we can insert new hooks w/o breaking existing rulesets

Also, so far it seems like the request_started/response_started hooks would most likely fit a default accept:hook as well.

Related issues 1 (1 open — 0 closed)

History
Property changes

Actions

Copy link

Updated by Victor Julien about 1 hour ago

Related to Story #7583: 9.0.0: usecase: improve firewall usecase added

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Feature #7701

firewall: configurable default policies

Updated by Victor Julien about 1 hour ago