mirror of https://github.com/OISF/suricata
cybersecurityidsintrusion-detection-systemintrusion-prevention-systemipsnetwork-monitornetwork-monitoringnsmsecuritysuricatathreat-hunting
You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1e36053eca
AF_PACKET is not setting the engine mode to IPS when some interfaces are peered and use IPS mode. This is due to the fact, it is possible to peer 2 interfaces and run an IPS on them and have a third one that is running in normal IDS mode. In fact this choice is the bad one as unwanted side effect is that there is no drop log and that stream inline is not used. To fix that, this patch puts suricata in IPS mode as soon as there is two interfaces in IPS mode. And it displays a error message to warn user that the accuracy of detection on IDS only interfaces will be low. |
11 years ago | |
|---|---|---|
| benches | ||
| contrib | 12 years ago | |
| doc | ||
| lua | 11 years ago | |
| m4 | ||
| qa | 11 years ago | |
| rules | 11 years ago | |
| scripts | 11 years ago | |
| src | 11 years ago | |
| .gitignore | 13 years ago | |
| .travis.yml | 11 years ago | |
| COPYING | ||
| ChangeLog | 11 years ago | |
| LICENSE | ||
| Makefile.am | 12 years ago | |
| Makefile.cvs | ||
| acsite.m4 | ||
| autogen.sh | ||
| classification.config | ||
| config.rpath | ||
| configure.ac | 11 years ago | |
| doxygen.cfg | 12 years ago | |
| reference.config | ||
| suricata.yaml.in | 11 years ago | |
| threshold.config | ||