You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

Cole Dishington c46308957f flow: optionally use pkt recursion for hash ... If a Suricata inline IPS device is routing traffic over a non-encrypted tunnel, like IPv6 tunnels, packets in a flow will be dropped and not be matched. e.g. The following example is a Suricata inline IPS with an IPv6 tunnel: request: IPv4]ICMP] -> |IPS| -> IPv6]IPv4]ICMP] reply: <- |IPS| <- IPv6]IPv4]ICMP] Both the IPv4 request and IPv6 reply will be seen by Suricata on ingress. The flows will not be matched due to flow recursion level. Optionally use pkt recursion level in flow hash. Excluding recursion level in flow hash allows matching of packet flows and defrag on an inline IPS Suricata scenario where the IPS device is a tunnel terminator. Feature: 6260		6 months ago
..
suricata-yaml	userguide: fix typo in inline mode illustration	3 years ago
dropping-privileges.rst	doc: Improve grammar, spelling and clarifications	5 years ago
exception-policies.rst	userguide: document exception policy stats	1 year ago
global-thresholds.rst	doc/userguide: document new threshold config options	1 year ago
includes.rst	doc/userguide: document include files	2 years ago
index.rst	doc/userguide: document include files	2 years ago
landlock.rst	security: prevents process creation	3 years ago
multi-tenant.rst	doc/userguide: add reload-tenant(s) doc	2 years ago
snort-to-suricata.rst	doc/userguide: spelling	2 years ago
suricata-yaml.rst	flow: optionally use pkt recursion for hash	6 months ago
systemd-notify.rst	systemd: reimplement sd_notify logic using UNIX socket	1 year ago