]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f5bd55d) | patch
exceptions: add reject support to exception policy
authorJuliana Fajardini <jufajardini@oisf.net>
Tue, 6 Sep 2022 19:16:45 +0000 (16:16 -0300)
committerVictor Julien <vjulien@oisf.net>
Thu, 8 Sep 2022 11:31:49 +0000 (13:31 +0200)
commitbbd968c738230b4f77de3278994c4fd5aa859dcd
tree09488a0ff612b5b7afce05c02d15d352966f927ctree
parentf5bd55dac863c4c54d6a21942a7ef821f2b4fa4fcommit | diff
exceptions: add reject support to exception policy

This enables the usage of 'reject' as an exception policy. As for both
IPS and IDS modes the intended result of sending a reject packet is to
reject the related flow, this will effectively mean setting the reject
action to the packet that triggered the exception condition, and then
dropping the associated flow.

Task #5503
doc/userguide/configuration/suricata-yaml.rst diff | blob | blame | history
src/util-exception-policy.c diff | blob | blame | history
src/util-exception-policy.h diff | blob | blame | history
suricata.yaml.in diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git