vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-10 09:19:04 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
18030 commits 26 branches 19 tags 450 MiB
Commit graph

529 commits

Author SHA1 Message Date
Simone Mainardi
7f449f8e64 Implements deadline-related ntopng methods 2020-02-18 15:47:28 +01:00
emanuele-f
33ece28868 Fix bad category names in Device Applications 
Fixes #3431
 2020-02-18 09:51:49 +01:00
Simone Mainardi
00158e8bc2 Implements error handling in line protocol generation 2020-02-16 14:30:08 +01:00
emanuele-f
54a4ef8b30 Fix use-after-free of the Host (as AlertableEntity) 2020-02-13 12:59:10 +01:00
Luca Deri
aea228e376 Compilation fixes 2020-02-08 10:16:56 +00:00
emanuele-f
e3d3d3992f Replace an existing flow alert if a more critical problem is found 
Also add the flow score into the database
 2020-02-07 19:20:57 +01:00
emanuele-f
0a0a3c4537 Rework flow status accounting 2020-02-07 19:17:07 +01:00
Luca Deri
1b7b831b85 Added getPackets() function 
Added localization strings for DNS data exfiltration
 2020-02-06 22:36:41 +01:00
emanuele-f
00b4fe17a6 Implement multitenant alerts support for in-memory alerts 2020-02-06 15:18:50 +01:00
emanuele-f
f2baada758 Initial multitenant alerts support 
Now the user allowed networks are honored when retrieving alerts. Non-flow alerts still need to be fixed.
 2020-02-05 23:10:37 +01:00
emanuele-f
70b13aeb99 Split query filter and aggregation 2020-02-05 23:10:37 +01:00
Simone Mainardi
05750cf3ef Fixes and cleanup 2020-02-05 18:07:54 +01:00
Luca Deri
70dc07c3f1 ArpMatrix code moved to attic 2020-01-30 09:57:32 +01:00
Alfredo Cardigliano
8829e79489 Show update/restart when running from systemd only (fix #3346) 2020-01-28 18:17:03 +01:00
Luca Deri
ada61e1807 Warnign fixes 2020-01-28 17:17:26 +01:00
Simone Mainardi
7f6e69653e Fixes reload of scripts upon license changes or expiration 
Fixes #3213
 2020-01-27 14:07:50 +01:00
emanuele-f
52f392625f Add flow protocol/category getters 2020-01-22 13:45:35 +01:00
Simone Mainardi
be167a6dcb Adds per-interface option to only allocate flows 2020-01-21 10:50:30 +01:00
emanuele-f
23f7d90ee4 Move interface.computeHostsScore in the Score script 2020-01-17 10:44:38 +01:00
emanuele-f
566b9ece0b Score changes 
- Move score from status definition to user scripts
- Separate flow score counter from the peers score
- Create a new HostScore class to hold the score data
 2020-01-16 18:11:14 +01:00
Alfredo Cardigliano
2a285ff7d3 Allocate only the required memory on POST instead of max. Increased max a bit. 2020-01-15 19:05:01 +01:00
emanuele-f
c336cca0e7 Improve host score calculation 2020-01-15 18:42:48 +01:00
emanuele-f
33828c55e8 Fix score chart 2020-01-15 15:43:25 +01:00
Simone Mainardi
03a4b14dda User scripts now read view configsets for viewed interfaces 
Implements #3225
 2020-01-15 15:40:44 +01:00
emanuele-f
d7528e1628 Score improvements 
The score is now calculated differently on the client and on the server of the flow.
The hosts flow is updated every minute and charted.
It's now possible to trigger an alert when the score threshold is exceeded
 2020-01-15 12:34:16 +01:00
Alfredo Cardigliano
f4a4c07d80 Add ability to extract traffic to users with permission (direct extraction only) 2020-01-13 17:39:12 +01:00
Alfredo Cardigliano
da6b521d53 Computing restricted filter for users allowed to capture live traffic based allowed subnets 2020-01-13 13:02:57 +01:00
Alfredo Cardigliano
a86aaa61e6 Add configuration of user permission for downloading pcap (hidden for the time being) 2020-01-10 18:16:01 +01:00
emanuele-f
5b05b06c96 Use extended icon classes. 
Also fixes mining alert icon
 2020-01-10 17:02:11 +01:00
Simone Mainardi
cef4f6df81 Enforces non-privileged users allowed nets when browsing local nets 
Fixes #3205
 2020-01-10 13:16:17 +01:00
Simone Mainardi
fa6cfd67ce Fixes broken alerts for ICMP 
Fixes #3198
 2020-01-09 15:26:08 +01:00
Simone Mainardi
3827baeab3 Allows exclusion of viewed interfaces from the list 2020-01-09 12:11:54 +01:00
Simone Mainardi
d635c52bc6 Sets interface in LuaEngine::setFlow 2020-01-09 10:31:02 +01:00
Simone Mainardi
76391ff6a5 Resores flow alerts for view interfaces 2020-01-08 18:18:00 +01:00
Alfredo Cardigliano
cfa3c0d1b4 Geolocation support instructions in the AS and countries pages 2020-01-07 17:32:26 +01:00
Luca Deri
57e6a93065 Improved scheduling algorithm to guarantee minimum service time when number of entries allow 
Updated (C)
 2020-01-06 23:36:36 +01:00
Simone Mainardi
a2afb0a3f5 Implements lua flow status isTCPConnecting 2020-01-03 12:59:11 +01:00
Simone Mainardi
1b73a89dae Fixes detection of TCP connection-refused flow status 2020-01-03 12:37:41 +01:00
Luca
92ea3cf5a0 TLS certificate improvements 2020-01-02 09:36:31 +01:00
emanuele-f
4621a8f409 Reload the periodic scripts when the configuration changes 2019-12-31 19:31:03 +01:00
emanuele-f
87c336a4aa Reduce cpu usage due to the loading of flow.lua 
The FlowAlertCheckLuaEngine is now cached into the (reused) vm, so it is reloaded
only when needed (e.g. a script on disk changes).
 2019-12-31 18:27:14 +01:00
emanuele-f
098647bce9 Fix community periodic scripts execution 2019-12-31 17:22:19 +01:00
emanuele-f
458a773a93 Refactor internal scripts for cleaner code 2019-12-31 16:53:32 +01:00
Simone Mainardi
7a2def354a Moves unused code to attic 2019-12-31 16:07:09 +01:00
Simone Mainardi
cc49cdc1af Implements per-interface pref to discard probing traffic 2019-12-31 10:15:54 +01:00
Simone Mainardi
fb7f2d553e Implements scanners detection using radix trees 2019-12-30 20:13:44 +01:00
emanuele-f
03e3613e7e Fix IPv6 validator 2019-12-30 15:44:47 +01:00
Alfredo Cardigliano
2a3bef9d6c Replace JSON string with TLV for alerts generated by the datapath. This removes a JSON decode in housekeeping.lua (#3148) 2019-12-27 17:03:28 +01:00
Luca Deri
fb260271d7 File copy fix for non-Unix platforms 2019-12-26 20:54:54 +01:00
emanuele-f
c74fa6e908 Implement reusable lua engine 
The same Lua vm is now reused. After 5 minutes the vm is destroyed and
reloaded to prevent memory to grow too much. inotify is used to detected
changes in the filesystem (partially implemented, must implement a recursive
watch)

This optimizes periodic scripts calls by a 10x factor.
 2019-12-24 18:35:58 +01:00