Project

General

Profile

Actions
Copy link

Feature #8203

closed

firewall: add configuration option for a reject default action.

Added by Olu Adeleke about 1 month ago. Updated about 1 month ago.

Status:
Rejected
Priority:
Normal
Assignee:
Victor Julien
Target version:
-
Effort:
Difficulty:
Label:
Needs backport to 8.0

Description

Currently the firewall mode supports only the drop default action when a packet doesn’t match a rule. Some users prefer that their firewall sends a reject, while others prefer the current silent default dropping.

Therefore, it will be useful to add a YAML configuration option that can allow customers to choose between drop and reject default actions when none of the firewall mode rule match.

Related issues 1 (1 open0 closed)

Is duplicate of Suricata - Feature #7701: firewall: configurable default policiesFeedbackVictor JulienActions
Actions
Copy link
 #1

Updated by Victor Julien about 1 month ago

  • Subject changed from Firewall mode: add configuration option for a reject default action. to firewall: add configuration option for a reject default action.
  • Status changed from New to Assigned
  • Assignee set to Victor Julien
Actions
Copy link
 #2

Updated by Victor Julien about 1 month ago

  • Status changed from Assigned to Rejected
  • Target version deleted (TBD)

This appears to be a duplicate of #7701.

Actions
Copy link
 #3

Updated by Victor Julien about 1 month ago

  • Is duplicate of Feature #7701: firewall: configurable default policies added
Actions
Copy link

Also available in: Atom PDF