]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 336cd57) | patch
exceptions: add reject support to exception policy 7852/head
authorJuliana Fajardini <jufajardini@oisf.net>
Tue, 6 Sep 2022 19:16:45 +0000 (16:16 -0300)
committerVictor Julien <vjulien@oisf.net>
Tue, 13 Sep 2022 08:12:53 +0000 (10:12 +0200)
commitfff9d529b7feaed19922513953610eb6d14d0158
treee0128d14bd4728ccb882b6f1ca742823165467b8tree
parent336cd5723478c4fcd8518f45acf08231960c5ccfcommit | diff
exceptions: add reject support to exception policy

This enables the usage of 'reject' as an exception policy. As for both
IPS and IDS modes the intended result of sending a reject packet is to
reject the related flow, this will effectively mean setting the reject
action to the packet that triggered the exception condition, and then
dropping the associated flow.

Task #5503

(cherry picked from commit bbd968c738230b4f77de3278994c4fd5aa859dcd)
doc/userguide/configuration/suricata-yaml.rst diff | blob | blame | history
src/util-exception-policy.c diff | blob | blame | history
src/util-exception-policy.h diff | blob | blame | history
suricata.yaml.in diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git