Project

General

Profile

Actions
Copy link

Bug #8497

open
VJ VJ

firewall: limit packet scope to UDP app-layer

Bug #8497: firewall: limit packet scope to UDP app-layer

Added by Victor Julien about 3 hours ago. Updated about 2 hours ago.

Status:
In Review
Priority:
Normal
Assignee:
Victor Julien
Target version:
9.0.0-beta1
Affected Versions:
Effort:
Difficulty:
Label:

Description

When using accept:packet or drop:packet in TCP app-layers like TLS, the hooks that get inspected or skipped depend on how the data is spliced over packets.

I think in the TCP app-layer accepting should be about hooks or transactions (or the whole flow), not about a single packet. Same for drop.s

Subtasks 1 (1 open0 closed)

Bug #8498: firewall: limit packet scope to UDP app-layer (8.0.x backport)AssignedVictor JulienActions

OT Updated by OISF Ticketbot about 3 hours ago Actions
Copy link
 #1

  • Subtask #8498 added

OT Updated by OISF Ticketbot about 3 hours ago Actions
Copy link
 #2

  • Label deleted (Needs backport to 8.0)

VJ Updated by Victor Julien about 2 hours ago Actions
Copy link
 #3

  • Status changed from In Progress to In Review
Actions
Copy link

Also available in: PDF Atom