[Oisf-users] wDrop vs Drop

Leonard Jacobs ljacobs at netsecuris.com
Tue Dec 12 22:03:11 UTC 2017

Means "without" drop maybe?

 From:   Ale Fredes <amfh2408 at gmail.com> 
 To:   <oisf-users at lists.openinfosecfoundation.org> 
 Sent:   12/12/2017 3:50 PM 
 Subject:   [Oisf-users] wDrop vs Drop 

Hello everyone!

I was analysing fast.log file and I found that if I use Suricata in IDS mode with the Reject action the registry shows [wDrop], anyone could tell me what mean the "w"?
If I use Suricata in IPS mode with the Drop action the log shows [Drop].



       	 	Libre de virus. www.avast.com  

Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users

Conference: https://suricon.net
Trainings: https://suricata-ids.org/training/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20171212/02ee93dd/attachment-0002.html>

More information about the Oisf-users mailing list