vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-29 15:39:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Implements Alert for long-lived flows (data exfiltration?) #2163

Browse source
This commit is contained in:
Alfredo Cardigliano 2018-12-10 18:58:51 +01:00
parent d2b5913af7
commit 4db4228d12
11 changed files with 67 additions and 10 deletions
Download patch file Download diff file Expand all files Collapse all files

1
scripts/lua/modules/lua_utils.lua
View file

@ -2504,6 +2504,7 @@ function getFlowStatus(status, flowstatus_info)
elseif(status == 16) then return(formatSuspiciousDeviceProtocolAlert(flowstatus_info))
elseif(status == 17) then return("<font color=orange>"..i18n("flow_details.elephant_flow_l2r").."</font>")
elseif(status == 18) then return("<font color=orange>"..i18n("flow_details.elephant_flow_r2l").."</font>")
elseif(status == 19) then return("<font color=orange>"..i18n("flow_details.longlived_flow").."</font>")
else return("<font color=orange>"..i18n("flow_details.unknown_status",{status=status}).."</font>")
end
end