No validation for single "any" in the rule.

[ItsCRC]

Hi,

The code doesn't validate the following rule: alert tcp any xany -> any any (msg:"xyz"; sid:20000001; content:"xyz");

Snort's error for the above rule: Unable to process the IP address: xany Snortparser: successfully validates it.

[g-rd]

is xany even allowed ? I haven't maintained this for ages, I will try to check snort manual and if xany is allowed I'll fix it.