From: Jason Ish Date: Fri, 5 May 2023 21:12:16 +0000 (-0600) Subject: alert-testmyids: add target to rule X-Git-Tag: suricata-6.0.13~19 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=refs%2Fpull%2F1243%2Fhead;p=thirdparty%2Fsuricata-verify.git alert-testmyids: add target to rule Choose a simple test to add the target keyword to as no other tests do this. This will excercise the "source" and "target" fields in the JSON schema. --- diff --git a/tests/alert-testmyids/test.rules b/tests/alert-testmyids/test.rules index 9f1307bdb..8eb5f0267 100644 --- a/tests/alert-testmyids/test.rules +++ b/tests/alert-testmyids/test.rules @@ -1 +1 @@ -alert ip any any -> any any (msg:"GPL ATTACK_RESPONSE id check returned root"; content:"uid=0|28|root|29|"; classtype:bad-unknown; sid:2100498; rev:7;) +alert ip any any -> any any (msg:"GPL ATTACK_RESPONSE id check returned root"; content:"uid=0|28|root|29|"; target:dest_ip; classtype:bad-unknown; sid:2100498; rev:7;)