Modify sctp ryl

Montimage · Sep 27, 2023 · 5d852d7 · 5d852d7
1 parent 05a4fe9
commit 5d852d7
Show file tree

Hide file tree

Showing 3 changed files with 6 additions and 6 deletions.
diff --git a/rules/103.corrupted_ngap.xml b/rules/103.corrupted_ngap.xml
@@ -14,7 +14,7 @@ Note:
  - the condition (ip.src != ip.dst) is used just to collect the IP addresses to show on MMT-Operator 
 -->
 
-<property value="THEN" delay_units="ms" delay_min="0" delay_max="0" property_id="103" type_property="SECURITY" 
+<property value="THEN" delay_units="ms" delay_min="0" delay_max="0" property_id="103" type_property="ATTACK" 
     description="SCTP Protocol Identifier indicates that its payload is NGAP but the payload is not effectually NGAP">
     <event value="COMPUTE" event_id="1" 
         description="SCTP Protocol Identifier is 60 to indicate its payload is NGAP"

diff --git a/rules/105.5g_dos_total_ngap_initialuemessage.xml b/rules/105.5g_dos_total_ngap_initialuemessage.xml
@@ -34,11 +34,11 @@ static unsigned long int limit_5g_dos_ngap_initialuemessage_per_ms = 0;
 void on_load(){
 	const char *str = getenv("MMT_SEC_5G_DOS_NGAP_INITIALUEMESSAGE_MS_LIMIT");
 	if( str == NULL ){
-		mmt_info("Rule 95: no value of MMT_SEC_5G_DOS_NGAP_INITIALUEMESSAGE_MS_LIMIT" );
+		mmt_info("Rule 105: no value of MMT_SEC_5G_DOS_NGAP_INITIALUEMESSAGE_MS_LIMIT" );
 		return;
 	}
 	limit_5g_dos_ngap_initialuemessage_per_ms = strtoul( str, NULL, 0 );
-	mmt_info("Rule 95: set MMT_SEC_5G_DOS_NGAP_INITIALUEMESSAGE_MS_LIMIT=%ld", 
+	mmt_info("Rule 105: set MMT_SEC_5G_DOS_NGAP_INITIALUEMESSAGE_MS_LIMIT=%ld", 
 		limit_5g_dos_ngap_initialuemessage_per_ms );
 }
 

diff --git a/rules/112.nas_suci_attack.xml b/rules/112.nas_suci_attack.xml
@@ -12,13 +12,13 @@ static unsigned long int limit_5g_suci_requests_per_ms = 10;
 void on_load(){
 	const char *str = getenv("MMT_SEC_SUCI_REQUESTS_MS_LIMIT");
 	if( str == NULL ){
-		mmt_info("Rule 80: no value of MMT_SEC_5G_DOS_HTTP2_MS_LIMIT" );
+		mmt_info("Rule 112: no value of MMT_SEC_5G_DOS_HTTP2_MS_LIMIT" );
 		limit_5g_suci_requests_per_ms=10;
 		
 	}
 	else
 		limit_5g_suci_requests_per_ms = 10;
-	mmt_info("Rule 80: set MMT_SEC_SUCI_REQUESTS_MS_LIMIT=%ld", 
+	mmt_info("Rule 112: set MMT_SEC_SUCI_REQUESTS_MS_LIMIT=%ld", 
 		limit_5g_suci_requests_per_ms );
 }
 
@@ -46,7 +46,7 @@ static inline bool em_5g_check_msg_throughput( const void *data ){
 	
 	counter ++;
 	//if(counter >= limit_5g_suci_requests_per_ms)
-		//printf("Rule 80 SUCI\n");
+		//printf("Rule 112 SUCI\n");
 	return (counter >= limit_5g_suci_requests_per_ms);
 }
 ]]></embedded_functions>