mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 06:38:20 +00:00
Merge branch 'empty_services' of https://github.com/mauropalumbo75/zeek
* 'empty_services' of https://github.com/mauropalumbo75/zeek: remove empty services and include udp active connections when logging in connection_state_remove
This commit is contained in:
Jon Siwek
commit
a68c9f6b71
5 changed files with 13 additions and 4 deletions
|
|
@ -210,7 +210,10 @@ event connection_state_remove(c: connection) &priority=-5
|
|||
if ( c$known_services_done )
|
||||
return;
|
||||
|
||||
if ( c$resp$state != TCP_ESTABLISHED )
|
||||
if ( c$resp$state != TCP_ESTABLISHED && c$resp$state != UDP_ACTIVE )
|
||||
return;
|
||||
|
||||
if ( |c$service| == 0 )
|
||||
return;
|
||||
|
||||
known_services_done(c);
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue