]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 531d99f) | patch
exception: in ids mode, only REJECT the packet
authorJuliana Fajardini <jufajardini@oisf.net>
Mon, 5 Jun 2023 16:02:26 +0000 (13:02 -0300)
committerVictor Julien <vjulien@oisf.net>
Thu, 8 Jun 2023 17:18:01 +0000 (19:18 +0200)
commit8f324e3b3d4137b1092b877e8f0dab42e7c824fd
tree5aad4750204f95003b9e1f2992b070bb9e29f014tree | snapshot
parent531d99f4cf3f7929ef5e972641d2f347c966b979commit | diff
exception: in ids mode, only REJECT the packet

In case of 'EXCEPTION_POLICY_REJECT', we were applying the same behavior
regardless of being in IDS or IPS mode.
This meant that (at least) the 'flow.action' was changed to drop when we
hit an exception policy in IDS mode.

Bug #6109
src/util-exception-policy.c diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git