Bug #5771: xdp: Flows with nested VLANs are not bypassed by XDP filter - Suricata - Open Information Security Foundation

Bug #5771

Even though the eBPF (XDP) and Suricata structures are ready to handle nested VLANs (VLAN in VLAN) after my testing all packets were passed to Suricata. 

 I've found this when trying out TLS bypass - bypass TLS flow after TLS handshake. 
 I am attaching a single TLS stream where after adding a VLAN all packets are forwarded to Suricata even though they should be bypassed after the handshake (after ~23 packets).

Back

Project

General

Profile

Suricata

Bug #5771