mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 14:48:21 +00:00
e76b56ce53
Highlights: - Reduced all DHCP events into a single dhcp_message event. (removed legacy events since they weren't widely used anyway) - Support many more DHCP options. - DHCP log is completely reworked and now represents DHCP sessions based on the transaction ID (and works on clusters). - Removed the known-devices-and-hostnames script since it's generally less relevant now with the updated log.
5 lines
96 B
Standard ML
5 lines
96 B
Standard ML
signature dhcp_cookie {
|
|
ip-proto == udp
|
|
payload /^.{236}\x63\x82\x53\x63/
|
|
enable "dhcp"
|
|
}
|