vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-04 18:00:10 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
8925 commits 26 branches 19 tags 447 MiB
Commit graph

182 commits

Author SHA1 Message Date
Alfredo Cardigliano
ce1e730203 -F nindex;debug to add all nindex info to the json 2020-03-02 10:59:08 +01:00
Alfredo Cardigliano
765474fa70 Option -F nindex;{dump,load} to dump and load json flows (for debugging only) 2020-02-27 18:51:59 +01:00
Alfredo Cardigliano
d83b2fb0ba Option to dump json flows to disk with -F nindex;debug 2020-02-26 16:34:46 +01:00
Alfredo Cardigliano
c3d3984285 Add more info to flow serialize (json) 2020-02-26 13:23:07 +01:00
emanuele-f
4944556992 Do not execute timeseries.lua if the driver is not InfluxDB 2020-02-21 12:08:07 +01:00
emanuele-f
96299661b3 Implement periodic activities status monitor 2020-02-20 16:59:11 +01:00
Simone Mainardi
b9a4534af6 Implements randomization of ips 2020-01-09 17:44:11 +01:00
Luca Deri
57e6a93065 Improved scheduling algorithm to guarantee minimum service time when number of entries allow 
Updated (C)
 2020-01-06 23:36:36 +01:00
Alfredo Cardigliano
e585ad9f1b Autogenerate persistent ZMQ CURVE key pairs. Display the public key in the interface details. New --zmq-encryption option to enable encryption (disabled by default for the time being) 2019-11-21 13:01:48 +01:00
Alfredo Cardigliano
4579a11c2e Support for ZMQ CURVE encryption (testing, no public option yet), added encryption to the json2tlv test tool, updated the embedded ZMQ source to latest 4.1.x stable 2019-11-20 11:11:39 +01:00
Alfredo Cardigliano
9992179645 Set affinity mask for service threads (implements #3012) 2019-10-28 15:54:33 +01:00
emanuele-f
b3a8c6d49a Migrate C flow status alerts to Lua user scripts 
- Alerts and flow status cleanup
- Community flow user scripts migration
- Implement scripts filters by l7 proto and packet interface only
- Migrate flow2statusinfojson
- Lower flow periodic update to 30 seconds if there is flow activity
- Display flow scripts without a gui section
 2019-10-22 10:42:22 +02:00
Simone Mainardi
ca5bcd86bf Deprecates sticky hosts 
Fixes #2907
 2019-10-14 18:50:18 +02:00
Alfredo Cardigliano
7e9678de37 IDS alert -> External alert 2019-10-09 11:35:51 +02:00
emanuele-f
d32b979368 Remove Alert Endpoint preference 
Fixes #2859
 2019-09-23 10:48:21 +02:00
Simone Mainardi
949d2a1025 Calculates flow idle timeouts using nProbe data for ZMQ interfaces 2019-09-10 18:05:16 +02:00
emanuele-f
6e14f978d6 Flow alerts status cleanup 2019-09-10 13:12:11 +02:00
emanuele-f
81a9963e46 Implement alerts based on potentially dangerous flows nDPI classification 2019-08-07 14:29:06 +02:00
Simone Mainardi
d9275ac166 Allows an extra runHousekeepingTasks before shutting down to do proper cleanup 2019-07-19 19:11:29 +02:00
Luca Deri
d04d5da466 Implemented --original-speed for reproducing pcaps at original pace 2019-07-15 17:29:07 +02:00
Simone Mainardi
78b2456931 Implements whitelist for long-lived flows 
Fixes #2666
 2019-06-21 16:00:54 +02:00
emanuele-f
1c9a4d3461 Implement ICMP data exfiltration alerts 
Closes #256
 2019-05-28 10:37:59 +02:00
Simone Mainardi
bbb81ceddd Optionally determines (and swaps) ZMQ src and dst using port numbers 
Implements #1978
 2019-05-22 16:58:58 +02:00
emanuele-f
14a9d83a30 Move local broadcast domain preference to the interface settings and show warnings 
A dismissable warning is shown if DHCP traffic has been seen on the currrent interface.
 2019-04-11 12:52:15 +02:00
Alfredo Cardigliano
96954bdabb new ids alert type and configuration 2019-04-04 11:02:01 +02:00
Simone Mainardi
4b3ae0e652 Makes the ARP matrix generation optional using a pref 2019-03-12 14:53:06 +01:00
emanuele-f
4a97017f35 Fix mac-based serialization key and add a preference to enabled it (disabled by default) 2019-02-22 16:01:58 +01:00
emanuele-f
02371ad963 Add ability to mask MAC addresses 
Closes #2399
 2019-02-19 16:34:47 +01:00
Simone Mainardi
831e5d91e6 Implements Lua unit tests 2019-01-18 18:03:36 +01:00
emanuele-f
5a88ee91da Rework flow exporters API 
Now ElasticSearch and LogStash are bind to a NetworkInterface instance

Closes #2312
 2019-01-15 12:53:21 +01:00
Simone Mainardi
d95d8541f3 Merge branch 'raphpen-dev' into dev 2019-01-09 12:26:43 +01:00
Simone Mainardi
e9811ae688 Implements X.509 client authentication 2019-01-09 12:21:56 +01:00
Simone Mainardi
28e87d93bc Implements configurable session termination and midnight expire 2019-01-08 12:33:39 +01:00
Luca Deri
bedff2c8e2 Updated (C) 2019-01-07 19:28:49 +01:00
Raphael Pennisi
cf9a351000 Added HTTPS client certificate authentication 2018-12-19 11:55:27 +01:00
Alfredo Cardigliano
479970c384 Implemented flows purging on shutdown (enabled with --shutdown-when-done only for now, it can be controlled with prefs->flushFlowsOnShutdown()), fixes #2229 2018-12-15 17:43:35 +01:00
Alfredo Cardigliano
4db4228d12 Implements Alert for long-lived flows (data exfiltration?) #2163 2018-12-10 18:58:51 +01:00
Alfredo Cardigliano
5c3488bf6f Using component with bytes unit selector for max file size 2018-12-07 10:23:12 +01:00
Alfredo Cardigliano
313d025dfb Implements Alerts for elephant flows #2164 2018-12-06 18:10:54 +01:00
Simone Mainardi
3e10192912 Makes the maximum number of aggregated flows configurable and optional 
Fixes #2123
 2018-11-09 19:50:56 +01:00
Alfredo Cardigliano
573bade0e0 extracted files limit is in bytes now, added bytes limit to preferences, PacketDumper code cleanup 2018-11-09 10:24:10 +01:00
Alfredo Cardigliano
610cb69b9c builtin packet dump code cleanup (moving to continuous recording) 2018-10-25 09:56:52 +02:00
emanuele-f
b9d5f7c4f5 Fix dropped traffic in nEdge VLAN trunk mode due to captive portal settings 2018-10-23 15:12:32 +02:00
emanuele-f
bfc36de225 Add IP based captive portal preference 2018-10-19 13:07:18 +02:00
Alfredo Cardigliano
e9149d8806 footer badge when running traffic recording, logs page, --storage-dir option renamed to --pcap-dir 2018-10-12 18:09:35 +02:00
emanuele-f
3bd6a1a97c Add preference to enable Device Protocols Policies in nEdge 2018-10-11 18:15:43 +02:00
Alfredo Cardigliano
6d3ff8cf44 removed 'traffic recording' page (moving configuration to the interface page), moved storage configuration to prefs, listing only ntopng interfaces in recording_utils.getInterfaces 2018-10-11 12:14:40 +02:00
emanuele-f
aa1ead94c4 Add Customized Categories editor 
Also unify the blacklist category handler to use the nDPI API
 2018-10-10 18:41:47 +02:00
emanuele-f
457dcb3457 Implement Device Protocols Alerts 2018-10-02 22:35:00 +02:00
emanuele-f
80c7c1993d Remove flow "user scripts" code. 
User scripts support was removed some time ago
 2018-10-01 09:57:15 +02:00