diff options
| author | fengweihao <[email protected]> | 2021-03-02 18:17:31 +0800 |
|---|---|---|
| committer | fengweihao <[email protected]> | 2021-03-02 18:17:31 +0800 |
| commit | 9d7142e164b53e2de451d74a82cb4556032e8353 (patch) | |
| tree | 9c84a938e73b91690219d64ad23725f65dc148a0 | |
| parent | c900e0ab28369f46e0bbb0997420ee963556e90a (diff) | |
TSG-5661 策略验证支持VOIP协议v2.1.5-20210305
| -rw-r--r-- | common/include/verify_policy.h | 2 | ||||
| -rw-r--r-- | platform/src/verify_policy.cpp | 4 | ||||
| -rw-r--r-- | resource/table_info_security.conf | 4 | ||||
| -rw-r--r-- | scan/src/policy_scan.cpp | 2 |
4 files changed, 9 insertions, 3 deletions
diff --git a/common/include/verify_policy.h b/common/include/verify_policy.h index 1dea7bc..971431f 100644 --- a/common/include/verify_policy.h +++ b/common/include/verify_policy.h @@ -76,6 +76,8 @@ enum security_scan_table PXY_SECURITY_FTP_URI, PXY_SECURITY_FTP_CONTENT, PXY_SECURITY_FTP_ACCOUNT, + PXY_SECURITY_SIP_FROM, + PXY_SECURITY_SIP_TO, PXY_SECURITY_IP_SRC_ASN, PXY_SECURITY_IP_DST_ASN, PXY_SECURITY_IP_SRC_LOCATION, diff --git a/platform/src/verify_policy.cpp b/platform/src/verify_policy.cpp index 2efeb8f..85f120f 100644 --- a/platform/src/verify_policy.cpp +++ b/platform/src/verify_policy.cpp @@ -135,7 +135,9 @@ int protoco_field_type_str2idx(enum verify_policy_type type, const char *action_ table_name[PXY_SECURITY_FTP_URI] = "TSG_FIELD_FTP_URI"; table_name[PXY_SECURITY_FTP_CONTENT] = "TSG_FIELD_FTP_CONTENT"; table_name[PXY_SECURITY_FTP_ACCOUNT] = "TSG_FIELD_FTP_ACCOUNT"; - scan_table_max = PXY_SECURITY_FTP_ACCOUNT; + table_name[PXY_SECURITY_SIP_FROM]="TSG_FIELD_SIP_FROM"; + table_name[PXY_SECURITY_SIP_TO]="TSG_FIELD_SIP_TO"; + scan_table_max = PXY_SECURITY_SIP_TO; break; case PXY_TABLE_WANNAT: table_name[PXY_WANNAT_SOURCE_ADDR]="TSG_SECURITY_SOURCE_ADDR"; diff --git a/resource/table_info_security.conf b/resource/table_info_security.conf index c78adee..89f0282 100644 --- a/resource/table_info_security.conf +++ b/resource/table_info_security.conf @@ -56,5 +56,5 @@ 45 TSG_SECURITY_DESTINATION_LOCATION virtual TSG_OBJ_GEO_LOCATION -- 46 TSG_FQDN_CATEGORY_BUILT_IN fqdn_plugin {"row_id":1,"is_suffix_match":4,"fqdn":3,"valid":5} -- 47 TSG_FQDN_CATEGORY_USER_DEFINED fqdn_plugin {"row_id":1,"is_suffix_match":4,"fqdn":3,"valid":5} -- - - +48 TSG_FIELD_SIP_FROM virtual TSG_OBJ_ACCOUNT -- +49 TSG_FIELD_SIP_TO virtual TSG_OBJ_ACCOUNT -- diff --git a/scan/src/policy_scan.cpp b/scan/src/policy_scan.cpp index 046ac29..09ea376 100644 --- a/scan/src/policy_scan.cpp +++ b/scan/src/policy_scan.cpp @@ -1382,6 +1382,8 @@ int security_policy_init(struct verify_policy * verify, const char* profile_path table_name[PXY_SECURITY_IP_DST_ASN]="TSG_SECURITY_DESTINATION_ASN"; table_name[PXY_SECURITY_IP_SRC_LOCATION]="TSG_SECURITY_SOURCE_LOCATION"; table_name[PXY_SECURITY_IP_DST_LOCATION]="TSG_SECURITY_DESTINATION_LOCATION"; + table_name[PXY_SECURITY_SIP_FROM]="TSG_FIELD_SIP_FROM"; + table_name[PXY_SECURITY_SIP_TO]="TSG_FIELD_SIP_TO"; for (int i = 0; i < __SECURITY_TABLE_MAX; i++) { |