From mboxrd@z Thu Jan  1 00:00:00 1970
From: Stefan Schantl <stefan.schantl@ipfire.org>
To: development@lists.ipfire.org
Subject: [PATCH 4/4] suricata: Set midstream-policy to pass-packet
Date: Fri, 05 Apr 2024 21:26:40 +0200
Message-ID: <20240405192640.5215-4-stefan.schantl@ipfire.org>
In-Reply-To: <20240405192640.5215-1-stefan.schantl@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============7122266457910744621=="
List-Id: <development.lists.ipfire.org>

--===============7122266457910744621==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Set this value to the same as the exception-policy to keep in sync and
hopefully have the same behaviour. In case this option is not set an
ugly message about a not correctly set value will be logged to syslog
during startup.

Signed-off-by: Stefan Schantl <stefan.schantl(a)ipfire.org>
---
 config/suricata/suricata.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/suricata/suricata.yaml b/config/suricata/suricata.yaml
index 9c8107429..b8f99c8b5 100644
--- a/config/suricata/suricata.yaml
+++ b/config/suricata/suricata.yaml
@@ -1117,7 +1117,7 @@ stream:
   #memcap-policy: ignore
   checksum-validation: yes      # reject incorrect csums
   #midstream: false
-  #midstream-policy: ignore
+  midstream-policy: pass-packet
   inline: auto                  # auto will use inline mode in IPS mode, yes=
 or no set it statically
   bypass: yes                   # Bypass packets when stream.reassembly.dept=
h is reached.
   reassembly:
--=20
2.39.2


--===============7122266457910744621==--