vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-29 15:39:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Migrate slow periodic activity to alerts queue

Browse source
This commit is contained in:
emanuele-f 2019-07-29 18:38:02 +02:00
parent 62f754f7f9
commit e4a67824c1
9 changed files with 24 additions and 52 deletions
Download patch file Download diff file Expand all files Collapse all files

26
scripts/lua/modules/alert_utils.lua
View file

@ -2305,29 +2305,6 @@ function check_host_remote_to_remote_alerts()
end
end
-- Global function
function check_periodic_activities_alerts()
while(true) do
local message = ntop.lpopCache("ntopng.periodic_activity_queue")
local elems
if((message == nil) or (message == "")) then
break
end
elems = json.decode(message)
if elems ~= nil then
interface.select(elems.ifname)
alerts_api.store(
alerts_api.periodicActivityEntity(elems.path),
alerts_api.slowPeriodicActivityType(elems.duration_ms, elems.max_duration_ms)
)
end
end
end
-- Global function
function check_login_alerts()
while(true) do
@ -2837,6 +2814,9 @@ local function processStoreAlertFromQueue(alert)
local router_info = {host = alert.router_ip, vlan = alert.vlan_id}
entity_info = alerts_api.hostAlertEntity(alert.client_ip, alert.vlan_id)
type_info = alerts_api.ipOutsideDHCPRangeType(router_info, alert.mac_address, alert.client_mac, alert.sender_mac)
elseif(alert.alert_type == alertType("slow_periodic_activity")) then
entity_info = alerts_api.periodicActivityEntity(alert.path)
type_info = alerts_api.slowPeriodicActivityType(alert.duration_ms, alert.max_duration_ms)
else
traceError(TRACE_ERROR, TRACE_CONSOLE, "Unknown alert type " .. (alert.alert_type or ""))
end