[Oisf-users] Suricata 4.1.5 - unable to complete certain TLS connections
Kare
privat at it-connect-linux.de
Mon Oct 21 10:13:48 UTC 2019
Am 21.10.19 um 11:41 schrieb Victor Julien:
> On 21-10-19 00:18, Nuno Oliveira wrote:
>> #- drop:
>> # alerts: yes # log alerts that caused drops
>> # flows: all # start or all: 'start' logs only a single drop
>> # # per flow direction. All logs each dropped pkt.
@Julien, thank you for the hint! I'll give it a try
> I would suggest enabling this in your eve log, so you can see which rule
> triggered the drop.
@Nuno I think 2 weeks ago, I found 2 possible signatures, which could
cause this issue! Can you please verify, that this signatures are the
trigger?
modifysid 2018457 "^drop" | "alert"
modifysid 2018005 "^drop" | "alert"
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0x82ED98EC095AC8B1.asc
Type: application/pgp-keys
Size: 2460 bytes
Desc: not available
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20191021/a7fe2465/attachment.key>
More information about the Oisf-users
mailing list