lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-14 16:44:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

intrusion detection: behaviour change in suricata 7

Browse Source
This commit is contained in:
Franco Fichtner 2024-01-30 21:16:10 +01:00
parent 890ca6435e
commit f5ae0c8448
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/opnsense/service/templates/OPNsense/IDS/suricata.yaml
View File

@ -1333,6 +1333,8 @@ stream:
checksum-validation: yes # reject wrong csums
inline: {% if OPNsense.IDS.general.ips|default("0") == "1" %}true{% else %}auto{% endif %}
midstream:
midstream-policy: ignore
reassembly:
memcap: 256mb
depth: 1mb # reassemble 1mb into a stream