[Bro-Dev] [JIRA] (BIT-1444) Connection logging for ESP
Jimmy Jones (JIRA)
jira at bro-tracker.atlassian.net
Wed Aug 5 07:01:00 PDT 2015
Jimmy Jones created BIT-1444:
--------------------------------
Summary: Connection logging for ESP
Key: BIT-1444
URL: https://bro-tracker.atlassian.net/browse/BIT-1444
Project: Bro Issue Tracker
Issue Type: New Feature
Components: Bro
Reporter: Jimmy Jones
I'd like to be able to track ESP (IPSec) connections in conn.log. Although ESP is encrypted, the ability to track volumes and pattern of life etc would be beneficial when doing intrusion analysis.
--
This message was sent by Atlassian JIRA
(v6.5-OD-08-001#65007)
More information about the bro-dev
mailing list