[Oisf-users] deciding what to drop in suricata IPS

Vieri rentorbuy at yahoo.com
Fri Dec 9 22:45:46 UTC 2016

Previous message (by thread): [Oisf-users] deciding what to drop in suricata IPS
Next message (by thread): [Oisf-users] deciding what to drop in suricata IPS
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Regarding my previous e-mail, I just realized maybe one way of dropping packets is if I replace the "^alert" keyword with "drop" in the rules.
However, is this the correct way?

Thanks,

Vieri

Previous message (by thread): [Oisf-users] deciding what to drop in suricata IPS
Next message (by thread): [Oisf-users] deciding what to drop in suricata IPS
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Oisf-users mailing list