Project

General

Profile

Actions
Copy link

Feature #154

closed

Implement alert-debug logging for IPV6 as well.

Added by Will Metcalf over 14 years ago. Updated over 14 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Gurvinder Singh
Target version:
1.0.0
Effort:
Difficulty:
Label:

Description

Currently if we get an IPV6 alert we just display the alert-fast format in alert-debug.log

from alert-debuglog.c
TmEcode AlertDebugLog (ThreadVars *tv, Packet *p, void *data, PacketQueue *pq) {
if (PKT_IS_IPV4(p)) {
return AlertDebugLogIPv4(tv, p, data, pq);
} else if (PKT_IS_IPV6(p)) {
return AlertDebugLogIPv6(tv, p, data, pq);
} {
...........
fprintf(aft->file_ctx->fp, "%s [**] [%" PRIu32 ":%" PRIu32 ":%" PRIu32 "] s [**] [Classification: fixme] [Priority: %" PRIu32 "] {" PRIu32 "} s:" PRIu32 " > s:" PRIu32 "\n",
timebuf, pa>gid, pa->sid, pa->rev, pa->msg, pa->prio, IPV6_GET_L4PROTO(p), srcip, p->sp, dstip, p->dp);
.............
}

return TM_ECODE_OK;
}
................
TmEcode AlertDebugLogIPv6(ThreadVars *tv, Packet *p, void *data, PacketQueue *pq)
Actions
Copy link
 #1

Updated by Victor Julien over 14 years ago

  • Target version changed from 0.9.1 to 0.9.2

Will be a task.

Actions
Copy link
 #2

Updated by Victor Julien over 14 years ago

  • Target version changed from 0.9.2 to 0.9.3
Actions
Copy link
 #3

Updated by Victor Julien over 14 years ago

  • Due date set to 06/24/2010
  • Status changed from New to Assigned
  • Assignee changed from Victor Julien to Gurvinder Singh
  • Target version changed from 0.9.3 to 1.0.0
  • Estimated time set to 0.00 h

Assigned as a task.

Actions
Copy link
 #4

Updated by Victor Julien over 14 years ago

  • Status changed from Assigned to Closed
  • % Done changed from 0 to 100

Patch applied, thanks Gurvinder.

Actions
Copy link

Also available in: Atom PDF