vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-05 10:41:34 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

Fixes search on protocols info field and added verdict

Browse source
This commit is contained in:
Matteo Biscosi 2025-08-28 11:59:33 +02:00
parent 16e090549d
commit 7e75e7506c
12 changed files with 176 additions and 49 deletions
Download patch file Download diff file Expand all files Collapse all files

4
scripts/lua/modules/historical_flow_utils.lua
View file

@ -10,6 +10,7 @@ local format_utils = require "format_utils"
local flow_risk_utils = require "flow_risk_utils"
local country_codes = require "country_codes"
local network_consts = require "network_consts"
local historical_format_utils = require "historical_format_utils"
local qoe_utils
local historical_ts_definitions
if ntop.isEnterpriseM() then
@ -1182,7 +1183,7 @@ local flow_columns = {
['IS_SRV_ATTACKER'] = { tag = "is_srv_attacker" },
['IS_SRV_VICTIM'] = { tag = "is_srv_victim" },
['IS_SRV_BLACKLISTED'] = { tag = "is_srv_blacklisted" },
['PROTOCOL_INFO_JSON'] = { tag = "protocol_info_json" },
['PROTOCOL_INFO_JSON'] = { tag = "protocol_info_json", dt_func = historical_format_utils.parseInfoJson },
['ALERT_JSON'] = { tag = "json" },
['SRC_PROC_NAME'] = { tag = "cli_proc_name", db_type = "String", db_raw_type = "String" },
['DST_PROC_NAME'] = { tag = "srv_proc_name", db_type = "String", db_raw_type = "String" },
@ -1538,6 +1539,7 @@ function historical_flow_utils.get_tags()
flow_defined_tags["post_nat_src_port"] = tag_utils.defined_tags["post_nat_src_port"]
flow_defined_tags["post_nat_ipv4_dst_addr"] = tag_utils.defined_tags["post_nat_ipv4_dst_addr"]
flow_defined_tags["post_nat_dst_port"] = tag_utils.defined_tags["post_nat_dst_port"]
flow_defined_tags["verdict"] = tag_utils.defined_tags["verdict"]
return flow_defined_tags
end