Make Zeek v7 ready.

corelight · Aug 22, 2024 · f42d5b9 · f42d5b9
1 parent 4628932
commit f42d5b9
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 6 deletions.
diff --git a/CHANGES b/CHANGES
@@ -1,3 +1,4 @@
+v0.2.22:    Make Zeek v7 ready.
 v0.2.21:    Fixed tests for zeek v5.
 v0.2.20:    Removed output for a test for compatibility reasons.
 v0.2.19:    Made tests Zeek v6 ready.

diff --git a/analyzer/analyzer.evt b/analyzer/analyzer.evt
@@ -1,14 +1,11 @@
 protocol analyzer spicy::ipsec_udp over UDP:
-	parse with zeek_spicy_ipsec::IPSecPacketUDP,
-	ports {4500/udp, 4501/udp};
+	parse with zeek_spicy_ipsec::IPSecPacketUDP;
 
 protocol analyzer spicy::ipsec_ike_udp over UDP:
-	parse with zeek_spicy_ipsec::IPSecIKE,
-	ports {500/udp};
+	parse with zeek_spicy_ipsec::IPSecIKE;
 
 protocol analyzer spicy::ipsec_tcp over TCP:
-	parse with zeek_spicy_ipsec::IPSecPacketsTCP,
-	ports {4500/tcp};
+	parse with zeek_spicy_ipsec::IPSecPacketsTCP;
 
 packet analyzer spicy::ipsec_esp:
     parse with zeek_spicy_ipsec::IPSecESP_IP;