Project

General

Profile

Actions

Feature #781

closed

IDS using NFLOG iptables target

Added by Premysl Hruby almost 12 years ago. Updated over 10 years ago.

Status:
Closed
Priority:
Normal
Target version:
Effort:
Difficulty:
Label:

Description

It would be super nice if Suricata would be able to process packets send from NFLOG iptables target.

Usecases:
  • More complex filtering of trafic which should be checked by Suricata
  • Using Suricata only on traffic which got ACCEPTed by iptables, no-one is interested about traffic he's droping on FW
Actions #1

Updated by Victor Julien almost 12 years ago

  • Assignee set to Anonymous
  • Target version set to TBD

This would be a great ticket to get familiar with Suricata packet input module development.

The API is documented here Packet_Acquisition_API.

The procedure around community tasks is documented here: OISF_Community_Tasks

Actions #2

Updated by Victor Julien about 11 years ago

  • Status changed from New to Assigned
  • Assignee changed from Anonymous to Giuseppe Longo
  • Target version changed from TBD to 3.0RC2
Actions #3

Updated by Victor Julien over 10 years ago

  • Status changed from Assigned to Closed
  • Target version changed from 3.0RC2 to 2.0.2
  • % Done changed from 0 to 100
Actions

Also available in: Atom PDF