Feature #8203: firewall: add configuration option for a reject default action. - Suricata - Open Information Security Foundation

Actions

Copy link

Feature #8203

closed

firewall: add configuration option for a reject default action.

Added by Olu Adeleke about 2 months ago. Updated about 2 months ago.

Status:

Rejected

Priority:

Normal

Assignee:

Victor Julien

Target version:

Effort:

Difficulty:

Label:

Needs backport to 8.0

Description

Currently the firewall mode supports only the drop default action when a packet doesn’t match a rule. Some users prefer that their firewall sends a reject, while others prefer the current silent default dropping.

Therefore, it will be useful to add a YAML configuration option that can allow customers to choose between drop and reject default actions when none of the firewall mode rule match.

Related issues 1 (1 open — 0 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Feature #8203

firewall: add configuration option for a reject default action.

Updated by Victor Julien about 2 months ago

Updated by Victor Julien about 2 months ago

Updated by Victor Julien about 2 months ago