Hello there,
This looks to be due to the new fail close behavior for exception policies, in Suricata 7. The drop.reason: stream midstream indicates that Suri is seen midstream sessions, but these are not enabled, and therefore such flows are being dropped.
A workaround would be to set stream.midstream-policy: ignore in your yaml file.
We’ve created a FAQ to help clarify and navigate such situations: My traffic gets blocked after upgrading to Suricata 7
Please let us know if this solves your issue! 