idsrules

package
v0.0.0-...-fd09ffd Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jul 25, 2024 License: MIT Imports: 5 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Rule 

type Rule struct {
	// The raw rule string.
	Raw string

	Enabled bool

	// Header components.
	Action     string
	Proto      string
	SourceAddr string
	SourcePort string
	Direction  string
	DestAddr   string
	DestPort   string

	// List of options in order.
	Options []RuleOption

	// Some options are also pulled out for easy access.
	Msg string
	Sid uint64
	Gid uint64
}

Rule is a struct representing an IDS rule.

func Parse 

func Parse(buf string) (Rule, error)

Parse an IDS rule from the provided string buffer.

func ParseReader 

func ParseReader(reader io.Reader) ([]Rule, error)

ParseReader parses multiple rules from a reader.

type RuleOption 

type RuleOption struct {
	Option string `json:"option"`
	Args   string `json:"args"`
}

RuleOption is a struct representing an IDS rule option.

type RuleReader 

type RuleReader struct {
	// contains filtered or unexported fields
}

RuleReader parses rules one by from an underlying reader.

func NewRuleReader 

func NewRuleReader(reader io.Reader) *RuleReader

NewRuleReader creates a new RuleReader reading from a reader.

func (*RuleReader) Next 

func (r *RuleReader) Next() (Rule, error)

Next returns the next rule read from the reader. Empty lines and commented out lines are skipped. Any other line that doesn't parse as a rule is considered an error.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.