policy/frameworks/notice/actions/drop.zeek¶

Notice¶

This script extends the built in notice code to implement the IP address dropping functionality.

Namespace: Notice
Imports: base/frameworks/netcontrol, base/frameworks/notice/main.zeek, policy/frameworks/netcontrol/catch-and-release.zeek

Summary¶

Redefinitions¶

Notice::Info: record

New Fields

dropped: bool &log &default = F &optional: Indicate if the $src IP address was dropped and denied network access.

Detailed Interface¶

Read the Docs v: master (git/master)

Versions: master; v4.1.0-rc1; v4.0.3; v4.0.2; v4.0.1; v4.0.0; v4.0.0-rc3; v4.0.0-rc2; v4.0.0-rc1; v3.2.3; v3.2.2; v3.2.1; v3.2.0; v3.2.0-rc1; v3.1.4; v3.1.3; v3.1.2; v3.1.1; v3.1.0; v3.1.0-rc; v3.0.14; v3.0.13; v3.0.12; v3.0.11; v3.0.10; v3.0.9; v3.0.8; v3.0.7; v3.0.6; v3.0.5; v3.0.4; v3.0.3; v3.0.2; v3.0.1; v3.0.0; lts; devel; current

Downloads: html

On Read the Docs: Project Home; Builds