[Bro-Dev] [JIRA] (BIT-1444) Connection logging for ESP
Jeannette Dopheide (JIRA)
jira at bro-tracker.atlassian.net
Thu Jan 7 11:46:00 PST 2016
[ https://bro-tracker.atlassian.net/browse/BIT-1444?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jeannette Dopheide updated BIT-1444:
------------------------------------
Due Date: 14/Jan/16
> Connection logging for ESP
> --------------------------
>
> Key: BIT-1444
> URL: https://bro-tracker.atlassian.net/browse/BIT-1444
> Project: Bro Issue Tracker
> Issue Type: New Feature
> Components: Bro
> Reporter: Jimmy Jones
> Assignee: Vlad Grigorescu
> Priority: Low
>
> I'd like to be able to track ESP (IPSec) connections in conn.log. Although ESP is encrypted, the ability to track volumes and pattern of life etc would be beneficial when doing intrusion analysis.
--
This message was sent by Atlassian JIRA
(v7.1.0-OD-03-049#71001)
More information about the bro-dev
mailing list