popexizhi: 转:BPF filter file with suricata use port

2018年9月4日星期二

转:BPF filter file with suricata use port

https://lists.openinfosecfoundation.org/pipermail/oisf-users/2011-March/000522.html

Like for example as snort does. An example:

not (dst host 239.192.57.11 and dst port 5405) and
not (dst host 172.17.47.27 and dst port 5405) and
not (dst host 172.17.47.28 and dst port 5405)

没有评论:

发表评论

订阅：博文评论 (Atom)