735 commits

Author	SHA1	Message	Date
emanuele-f	937d94dd0e	Fix RTT alerts location	2019-06-28 18:27:54 +02:00
emanuele-f	2df194a282	Implement alert release	2019-06-28 15:06:39 +02:00
emanuele-f	a9d3c78587	Alerts changes ... NOTE: database schema changed. Existing alerts will be lost. - Unified engaged and closed tables - Simplified hosts engaged alert counters handling: periodically set by lua - Removed alert engine and replaced with alert periodicity - Now engage is implicitly derived from the alert end timestamp and periodicity - New alerts_api.lua to easily emit alerts - Removed past alerts counter aggregation by hash - Alert notifications for non-flow alerts are now removed from C and triggered by lua	2019-06-28 10:47:17 +02:00
emanuele-f	15bf893cc3	Fix missing interface selection	2019-06-26 12:30:18 +02:00
emanuele-f	8a239f97f4	Trace periodic activities duration and generate an alert for long lasting ones	2019-06-21 11:41:38 +02:00
Simone Mainardi	a543ec8e73	Refactors logic to engage alerts to simplify it	2019-06-11 16:03:54 +02:00
Simone Mainardi	1ab3d97e5c	Fixes delete of old alerts	2019-06-10 17:22:45 +02:00
emanuele-f	6234245773	Move InfluxDB monitoring to separate entry	2019-06-10 12:47:10 +02:00
Emanuele Faranda	5f9e8b17df	Implement System interface ... The system interface now holds system wide alerts and timeseries	2019-06-03 08:53:26 +00:00
Alfredo Cardigliano	99aa386a12	Implements alerts on SNMP port load exceeding a configured threshold (%) based on port speed (#2223)	2019-05-30 15:18:46 +02:00
Simone Mainardi	c7e8c32559	Implements telemetry data POST	2019-05-23 16:43:16 +02:00
Alfredo Cardigliano	7590f629fe	Alerts on duplex status change on SNMP interface (#2349)	2019-05-23 12:23:45 +02:00
Alfredo Cardigliano	7d3183e642	Added REMOTE_ADDR to _SERVER, recording address in alerts generated by the tracker, logging IP address from which password has been changed (#2554)	2019-05-13 16:13:15 +02:00
Luca Deri	0ec224db49	Alert nil fixes	2019-05-07 22:11:41 +02:00
Simone Mainardi	25785fca62	Groups together flow alerts for the same flow in a counter variable ... This is to mitigate the number of alerts and implements #2515	2019-04-19 16:14:06 +02:00
Simone Mainardi	ddd3015db1	Implements alerts mitigation for stored alerts	2019-04-12 16:20:55 +02:00
emanuele-f	fa4330bbfd	Implement alert for IP addresses assigned outside the configured DHCP ranges	2019-04-11 17:01:39 +02:00
Alfredo Cardigliano	3f442f28b0	Rendering signature/severity for ids alerts	2019-04-04 16:31:13 +02:00
Alfredo Cardigliano	96954bdabb	new ids alert type and configuration	2019-04-04 11:02:01 +02:00
Simone Mainardi	5e5ad77cec	Implements broadcast domain too large alerts	2019-04-01 14:20:57 +02:00
emanuele-f	074fccb1b3	Use network alias in alerts	2019-03-25 17:01:39 +01:00
Simone Mainardi	5b667beadb	Fixes getAlertTimeBounds failing with enqueued flow alerts	2019-03-11 17:01:10 +01:00
Simone Mainardi	8613ffd7ee	Add link to active flow in flow alerts	2019-03-06 14:56:10 +01:00
Simone Mainardi	dcd1c61d78	Alert anomalies fixes	2019-03-06 12:43:45 +01:00
Simone Mainardi	f8b120a9ce	Implements alerts for ICMP anomalies ... Partially addresses #2387	2019-03-05 18:02:34 +01:00
Simone Mainardi	de286daf9c	Implements alerts for DNS anomalies ... Partially addresses #2387	2019-03-05 16:49:50 +01:00
Simone Mainardi	626677705b	Adds Application label to flow alerts	2019-02-28 19:10:53 +01:00
Simone Mainardi	7f7dea8d87	Additional ICMP details in flow alerts ... Fixes #2414	2019-02-28 18:44:41 +01:00
Simone Mainardi	75abbd6181	Adds L7 protocol information to displayed flow alerts	2019-02-19 14:56:33 +01:00
Simone Mainardi	7c0d5b76bf	Adds information (type/code/port unreachable descr) to ICMP flow alerts ... Fixes #2403	2019-02-19 14:18:51 +01:00
emanuele-f	2e92bcbd4e	Alert page improvements	2019-02-19 13:12:52 +01:00
emanuele-f	f007fbaaee	Make engaged/past alerts links point to historical flows	2019-02-15 11:25:04 +01:00
emanuele-f	50ee36c11a	Alert drilldown links now point to historical flows	2019-02-14 11:23:52 +01:00
emanuele-f	f801aa4902	Implement beta anomaly index alerts generation ... Enable with "redis-cli set ntopng.prefs.beta_anomaly_index_alerts 1"	2019-02-13 15:57:32 +01:00
Simone Mainardi	be84653570	Fixes failing SYN-scan detection	2019-02-12 19:01:51 +01:00
Simone Mainardi	15200f7afc	Implements inactive hosts engaged alerts	2019-02-04 15:02:59 +01:00
Simone Mainardi	708fb332b4	Adds inactive hosts alerts (WIP)	2019-01-31 19:10:21 +01:00
emanuele-f	6113c692af	Unify Protocol/Application labels ... L4 information is now referred to as "Protocol" L7 information is now referred to as "Application" Closes #2316	2019-01-28 16:59:27 +01:00
Simone Mainardi	5317d23fc2	Disables ZMQ flow collection drop alerts (waiting to make them engaged) ... Revert "Implements ZMQ flow collection drops alerts" This reverts commit d21e8d6f3e.	2019-01-24 15:02:22 +01:00
Simone Mainardi	d21e8d6f3e	Implements ZMQ flow collection drops alerts	2019-01-23 19:42:18 +01:00
Simone Mainardi	2fc083b50b	Adds testing facility for periodic checks	2019-01-17 16:13:39 +01:00
Alfredo Cardigliano	bb6937ca66	Interface Status Change Alerts and Interface Discards/Errors Alerts preferences	2019-01-11 12:53:19 +01:00
Alfredo Cardigliano	66e497ec01	new alert type alert_port_errors	2019-01-11 11:41:09 +01:00
Alfredo Cardigliano	00e528e3d7	new get_alerts_data.lua endpoint with non-formatted data, UI now uses get_alerts_table_data.lua	2019-01-10 10:20:27 +01:00
Alfredo Cardigliano	2002128eb4	Webhook export module for exporting alarms (implements #2251)	2019-01-07 22:09:15 +01:00
Simone Mainardi	fcc66a4b05	Updates ntopctl to handle service n2disk-ntopng	2019-01-02 15:49:16 +01:00
emanuele-f	11a99722e0	Implement network data delete ... IPv4 network masks /24 to /32 are now supported. Fix #2257	2019-01-02 13:09:48 +01:00
emanuele-f	f8c074bf03	Use cross platform ntop.msleep	2018-12-18 18:53:19 +01:00
emanuele-f	453f515feb	Windows fixes	2018-12-18 10:43:45 +01:00
Luca Deri	32c1bf8243	Removed old Lua leftover	2018-12-18 00:28:27 +01:00