fix: [publicdns] IP addresses should be cidr

2021-06-10 09:54:23 +02:00 · 2021-06-10 09:54:23 +02:00 · 8a2c3dc760
parent b4785f7fd9
commit 8a2c3dc760
3 changed files with 4 additions and 4 deletions
--- a/lists/public-dns-v4/list.json
+++ b/lists/public-dns-v4/list.json
@ -1512,6 +1512,6 @@
    "domain|ip"
  ],
  "name": "List of known IPv4 public DNS resolvers",
-  "type": "string",
+  "type": "cidr",
  "version": 20210604
 }
--- a/lists/public-dns-v6/list.json
+++ b/lists/public-dns-v6/list.json
@ -77,6 +77,6 @@
    "domain|ip"
  ],
  "name": "List of known IPv6 public DNS resolvers",
-  "type": "string",
+  "type": "cidr",
  "version": 20210604
 }
--- a/tools/generate-publicdns.py
+++ b/tools/generate-publicdns.py
@ -26,7 +26,7 @@ def process(file):
    publicdns_ipv4_warninglist = {
        'description': 'Event contains one or more public IPv4 DNS resolvers as attribute with an IDS flag set',
        'name': 'List of known IPv4 public DNS resolvers',
-        'type': 'string',
+        'type': 'cidr',
        'matching_attributes': ['ip-src', 'ip-dst', 'domain|ip']
    }
    generate(lipv4, publicdns_ipv4_warninglist, publicdns_ipv4_dst)
@ -36,7 +36,7 @@ def process(file):
    publicdns_ipv6_warninglist = {
        'description': 'Event contains one or more public IPv6 DNS resolvers as attribute with an IDS flag set',
        'name': 'List of known IPv6 public DNS resolvers',
-        'type': 'string',
+        'type': 'cidr',
        'matching_attributes': ['ip-src', 'ip-dst', 'domain|ip']
    }
    generate(lipv6, publicdns_ipv6_warninglist, publicdns_ipv6_dst)