vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-07 05:16:41 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
1646 commits 26 branches 19 tags 450 MiB
Commit graph

187 commits

Author SHA1 Message Date
emanuele-f
bc14efd102 Interpret ZMQ retransmissions/OOO and update counters 2016-10-26 14:32:02 +02:00
Luca Deri
217902fc01 Minor code cleanup 2016-10-14 18:04:03 +02:00
Simone Mainardi
9022b7b1e8 Adds VoIP SIP to RTP flow search 2016-10-14 13:15:07 +02:00
Luca
827a312a5f Resized footer 2016-10-10 09:16:21 +02:00
Luca Deri
97b19c1461 Introduced the concept of Mac hosts (it used to be mixed with L3 hosts). More work is needed to add L2 stats 
Host activities are now enabled (and memory allocated) only for local hosts. Fixed bug in activities preferences
Cleaned up various methods
Removed some old unused code
 2016-10-02 19:43:13 +02:00
Luca
96e44265e7 Minor changes for #760 2016-09-27 19:13:38 +02:00
Simone Mainardi
cd0db380e3 Reworked flow activities calculation 2016-09-27 18:06:41 +02:00
Emanuele Faranda
4272e6bb37 Fix HTTP detection for multiple requests 2016-09-25 22:08:19 +02:00
Simone Mainardi
b8acfb9400 Removes (Too Early) for ZC flow interfaces 2016-09-23 12:25:56 +02:00
emanuele-f
5a27c35e74 Make activity detection work with recent changes 2016-09-12 11:50:51 +02:00
Luca Deri
17f7bde70b Reworked protocol VMs 2016-09-11 23:42:03 +02:00
Luca Deri
54f15aa322 Reworked code to avoid crash while executing flow callbacks 2016-09-10 09:51:04 +02:00
Luca Deri
9d6d69eb91 TEmporarely disabled flow_update in http 2016-09-09 19:45:11 +02:00
Simone Mainardi
a280e53862 Completes the migration to the stateful alerts 2016-09-06 16:36:05 +02:00
Simone Mainardi
441857d34d Implements stateful network alerts 2016-09-02 14:59:54 +02:00
Simone Mainardi
98b9726585 Prevents a possible null-pointer dereference 2016-09-01 15:56:55 +02:00
emanuele-f
94d964eb71 Fix reassembled data not being reported as SSL data 2016-08-29 01:07:02 +02:00
emanuele-f
179b7f72c8 Remove unsafe code and extend activity framework API 2016-08-27 10:58:58 +02:00
Simone Mainardi
be37fe7595 Fixes a JSON (de)serialization issue 
JSON fields were serialized as plain strings without escaping
and this was causing troubles during deserialization.

For example:
"json": "{ "15":
        ^
        this was causing the "json" field to be invalid

This commit fixes the issue.
 2016-08-26 15:37:37 +02:00
emanuele-f
7aa8623fbf Use HTTP content type in activity detection and other changes 2016-08-24 02:17:59 +02:00
emanuele-f
d46c6f5de7 Implement HTTP content type extraction 2016-08-24 01:34:20 +02:00
emanuele-f
fbb57433c6 Add SSL handshake detection support for ServerHello+CCS in one packet and one way encrypted data 2016-08-21 16:46:31 +02:00
Luca
274921ee5c Reimplemented view: interface, and Paginator code. 
Minor code cleanup
 2016-08-18 13:44:24 +02:00
emanuele-f
ce71fe65ef Merge remote-tracking branch 'upstream/dev' into framework 2016-08-14 02:03:38 +02:00
emanuele-f
97781044fd Implement command sequence filter and use it to perform IMAPS detection 2016-08-14 01:56:25 +02:00
emanuele-f
528d7e85f8 Implement activity filters framework 2016-08-13 15:05:07 +02:00
Luca Deri
2d9fd00650 Merge pull request #689 from emanuele-f/tls 
Implement SSL/TLS handshake detection
 2016-08-12 23:20:11 +02:00
emanuele-f
b25a186d61 Implement activity framework skeleton 2016-08-12 19:46:11 +02:00
emanuele-f
2bb4dcc18b Rollback some changes and other changes 2016-08-12 15:06:03 +02:00
emanuele-f
8678bcf2bd Flow API and other changes 2016-08-12 14:30:56 +02:00
emanuele-f
8f67aa7d8a Enable TLS detection only when needed 2016-08-12 11:00:33 +02:00
Luca
fdf1384081 Fixes after merge 2016-08-10 09:46:05 +02:00
Luca
bcadcf033f Removed view interface (work in progress will be reintroduced after cleanup) 2016-08-10 09:37:10 +02:00
Simone Mainardi
52abb7659a Handles per-interface alerts via the AlertsManager 
This commit moves the global ntopng-wide alerts to
interfaces' AlertsManager s
 2016-08-09 16:47:36 +02:00
emanuele-f
80e7d980f7 Improove TLS detection 2016-08-09 16:13:40 +02:00
Luca Deri
dab3c11681 Implemented flow update callback and extended flow information passed in callbacks 
Selected cherry pick from https://github.com/ntop/ntopng/pull/677
 2016-08-07 11:12:39 +02:00
Luca Deri
4b9a3744a4 Fix to avoid a race condition while execuritn lua scripts (#672) 2016-08-04 17:50:44 +02:00
Luca Deri
748c881487 Merge branch 'dev' of https://github.com/ntop/ntopng into dev 2016-08-04 01:23:57 +02:00
Luca Deri
fee5d60091 Added scaffolding code for SSL dissecgtion 2016-08-04 01:23:42 +02:00
Luca Deri
45e0c01377 Fix for #672 2016-08-03 15:05:38 +02:00
Luca
516ca1a545 Added the ability to reload the housekeeping script with kill -HUP <ntopng PID> 
Calling screpts at flow start/end/update
 2016-07-29 20:17:10 +02:00
Luca Deri
9311ecf75f Added the ability to execute a Lua script when flows (and soon hosts) are updated. (work in progress) 2016-07-29 00:22:11 +02:00
Luca Deri
c97f01d09a Reset cli2srv_last_goodput_bytes/srv2cli_last_goodput_bytes counter 2016-07-26 17:03:49 +02:00
Luca Deri
d3a770e283 Disabled "too early" and enabled guess for ZMQ interfaces 2016-07-25 09:54:17 +02:00
Simone Mainardi
7a8878a886 Adds bidirectional flags in host_get_json TCP flows 
An excerpt of the json returned is:

{"srv.ip":"a.b.c.d","cli.port":50559,"srv.port":443,
"cli2srv.tcp_flags":{"SYN":1,"RST":0,"PSH":1,"FIN":0,"URG":0,"ACK":1},"cli2srv.throughput_bps":0,"bytes":2869,"srv2cli.throughput_bps":0,"cli2srv.throughput_pps":0,
"srv2cli.tcp_flags":{"SYN":1,"RST":0,"PSH":1,"FIN":0,"URG":0,"ACK":1},"tcp_established":true,"srv2cli.throughput_pps":0,"cli.ip":"192.168.2.130","proto.ndpi_id":126,"proto.ndpi":"SSL.Google"},
 2016-07-14 12:44:55 +02:00
Simone Mainardi
bb2af892e2 Includes custom HTTP prefixes in alert links 
Fixes #652
 2016-07-08 16:28:53 +02:00
Simone Mainardi
253b431bea Adds IPv6 fields to Elastic Search flows 
Added IPV6_SRC_ADDR and IPV6_DST_ADDR fields
for ipv6 flows exported to elastic search

Fixes #548
 2016-06-23 18:45:49 +02:00
Luca Deri
9698aa7172 Correctly updated host alerts 2016-06-18 10:24:35 +02:00
Luca Deri
1a154dc52f Per hosts alerts are not correctly initialized 
Aded IPv6 label to top talkers to easily identify hosts with dual stack
 2016-06-18 10:16:02 +02:00
Luca Deri
43c17964e5 Implemented non-L3 stats and improved tcp flow stats 2016-06-17 23:51:13 +02:00