added raw tcp fingerprint to json (#2812)

* added raw tcp fingerprint to json * removed unnecessary change * fixed key for json * added configuration option for raw tcp fingerprint * fixed typos
2026-05-05 02:16:47 +00:00 · 2025-05-15 08:28:35 +02:00 · 2025-05-15 08:28:35 +02:00 · a970998f51
commit a970998f51
parent 4b47f7c669
5 changed files with 13 additions and 0 deletions
--- a/doc/configuration_parameters.md
+++ b/doc/configuration_parameters.md
@ -16,6 +16,7 @@ List of the supported configuration options:
 | NULL         | "dpi.compute_entropy"                     | 1             | NULL      | NULL      | Enable/disable computation of flow entropy |
 | NULL         | "fpc"                                     | enable        | NULL      | NULL      | Enable/disable First Packet Classification |
 | NULL         | "metadata.tcp_fingerprint"                | enable        | NULL      | NULL      | Enable/disable computation and export of TCP fingerprint for all TCP flows
+| NULL         | "metadata.tcp_fingerprint_raw"            | disable       | NULL      | NULL      | Enable/disable computation and export of raw TCP fingerprint for all TCP flows
 | NULL         | "dpi.guess_on_giveup"                     | 0x03          | 0x00      | 0x03      | Tell the library to guess flow classification, if any DPI algorithms/logics fail.  The value is a bitmask. Values: 0x0 = disabled; 0x01 = enable guessing by port; 0x02 = enable guessing by ip |
 | NULL         | "dpi.guess_ip_before_port"                | disable       | NULL      | NULL      | Enable/disable guessing by IP first when guessing flow classifcation. Disabled = guess by port first. |
 | NULL         | "flow_risk.$FLOWRISK_NAME_OR_ID"          | enable        | NULL      | NULL      | Enable/disable the specific flow risk. Use "any" as flow risk name if you want to easily enable/disable all flow risks. The names of the flow risks are available at `src/include/ndpi_typedefs.h`: look for `ndpi_risk_shortnames` |