aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

doc: improvement of xbits documentation page

Browse Source
pull/3680/head
Eric Leblond 6 years ago committed by Victor Julien
parent 43ede4db7f
commit 83a8df90f3
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File

4
doc/userguide/rules/xbits.rst
Unescape Escape View File

@ -5,7 +5,7 @@ Set, unset, toggle and check for bits stored per host or ip_pair.
Syntax::
xbits:<set|unset|isset|toggle>,<name>,track <ip_src|ip_dst|ip_pair>;
xbits:<set|unset|isset|isnotset|toggle>,<name>,track <ip_src|ip_dst|ip_pair>;
xbits:<set|unset|isset|toggle>,<name>,track <ip_src|ip_dst|ip_pair> \
[,expire <seconds>];
xbits:<set|unset|isset|toggle>,<name>,track <ip_src|ip_dst|ip_pair> \
@ -23,6 +23,8 @@ Notes
- To not alert, use ``noalert;``
- the ``toggle`` option will flip the value of the xbits.
- See also:
- `https://blog.inliniac.net/2014/12/21/crossing-the-streams-in-suricata/ <https://blog.inliniac.net/2014/12/21/crossing-the-streams-in-suricata/>`_

Write Preview
Loading…
Cancel
Save