1 réponse
- Le plus récent
- Le plus de votes
- La plupart des commentaires
1
It sounds like your default action for the managed rule group is set to alert. You can set it to drop to block the traffic: https://docs.aws.amazon.com/network-firewall/latest/developerguide/nwfw-using-managed-rule-groups.html
You may also need to check out your rule group ordering: https://docs.aws.amazon.com/network-firewall/latest/developerguide/suricata-rule-evaluation-order.html#suricata-default-rule-evaluation-order
répondu il y a 2 ans
Contenus pertinents
- demandé il y a 10 mois
- demandé il y a un an
- demandé il y a 2 mois
- demandé il y a un an
- AWS OFFICIELA mis à jour il y a un an
- AWS OFFICIELA mis à jour il y a un an
- AWS OFFICIELA mis à jour il y a un an
- AWS OFFICIELA mis à jour il y a 2 ans
0 thanks mike for helping me out. How can i set them to drop? I have disabled the run in alert mode. I don't see any other option