suricata

Commit Graph

Author	SHA1	Message	Date
Ruslan Usmanov	1090ee9d8d	rate_filter by_both through IPPair storage Ticket https://redmine.openinfosecfoundation.org/issues/2127	8 years ago
Victor Julien	ebb42f831c	suppress: add track by_either mode So far suppress rules would apply to src or dst addresses of a packet. This meant that if a ip would need to suppressed both as src and as dst, 2 suppress rules would be needed. This patch introduces track by_either, which means that the ip(s) in the suppress rule are tested against both the packets source and dest ip's. If either of them is on the suppress list, the alert is suppressed.	10 years ago
Victor Julien	e85a44c383	suppress: support ip-lists Ticket: 1137 Support supplying a list of IP's to the suppress keyword. Variables from the address-groups and negation is supported. The same logic (and code) is used that is also used in parting the IP portions of regular detection rules.	10 years ago
Ken Steele	a63b87df9e	Clean up function syntax Remove space before ( in function names. Put { on new line. Make tests static.	12 years ago
Anoop Saldanha	b48a686d65	considering the tenths of a seconds in a packet, when calculating thresholds	13 years ago
Victor Julien	c0a2cbd478	Move over src and dst thresholding to use host table. Fix a bug in threshold 'both' handling.	14 years ago
Eric Leblond	8787e6f6d0	suppress: use DetectAddress instead of DetectAddressHead	14 years ago
Eric Leblond	03c185a3ad	threshold: add suppress keyword This patch adds the suppress keyword to the threshold.config file. The alerts are suppressed but the other elements like flowbits are maintained.	14 years ago
Pablo Rincon	1ae36b9a6a	Adding rate_filter support for threshold.config, multiline support and unittests	15 years ago
Victor Julien	4c3e17d4ab	Fix thresholding issues.	15 years ago
William Metcalf	ce01927515	Import of GPLv2 Header 050410	15 years ago
Gerardo Iglesias Galvan	ef2ae76c42	Add support for detection_filter keyword	16 years ago
Victor Julien	aa736b01d6	Fix thresholding coding changing unlocked and supposed to be static memory areas.	16 years ago
Victor Julien	6ab64706b0	Improve threshold hash table handling.	16 years ago
Breno Silva	69eb869cc9	Threshold Rule	16 years ago
Victor Julien	bab4b62376	Initial add of the files.	16 years ago

16 Commits (c6cda99bcdeffce3fa775f0b2b414529e94bae11)