clones/fastnetmon
1
0
Fork 0
mirror of https://github.com/pavel-odintsov/fastnetmon.git synced 2024-09-21 18:37:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,590 Commits 2 Branches 20 Tags 50 MiB
d0076012e6
Commit Graph

3590 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Pavel Odintsov
d0076012e6 Extracted attack details into separate file 2023-07-10 14:50:04 +01:00
Pavel Odintsov
323b3ea985 Added logic log number of entries in hash 2023-07-09 18:27:56 +01:00
Pavel Odintsov
f719832ebd Implemented complete logic for attack detection 2023-07-09 18:20:53 +01:00
Pavel Odintsov
fb2928a857 Added logic to process filled buckets 2023-07-09 17:34:50 +01:00
Pavel Odintsov
d24a838c59 Added raw buffer logic for all ban and unban commands 2023-07-09 17:13:08 +01:00
Pavel Odintsov
0bde56847a Improved argument sequence 2023-07-09 16:57:23 +01:00
Pavel Odintsov
c77d5c0957 Finished migration to new unified call_blackhole_actions_per_host 2023-07-09 15:50:40 +01:00
Pavel Odintsov
f8995223b4 Migrated call_unban_handlers to unified call_blackhole_actions_per_host 2023-07-09 15:40:09 +01:00
Pavel Odintsov
44ff72ea34 Extracted logic to store attack sample 2023-07-09 15:28:22 +01:00
Pavel Odintsov
c1e871796c Improved script callback logic 2023-07-09 15:20:05 +01:00
Pavel Odintsov
e159ad10d2 Unified unban for script callbacks 2023-07-09 15:17:23 +01:00
Pavel Odintsov
e5cc588891 Unified GoBGP logic to ban and unban 2023-07-09 15:11:16 +01:00
Pavel Odintsov
4f5523ab7e Unified ExaBGP ban logic to ban for ban and unban 2023-07-09 15:08:21 +01:00
Pavel Odintsov
fc77d5351d Unified ban logic per action 2023-07-09 15:04:02 +01:00
Pavel Odintsov
7f631c2c18 Added logic to fence ban logic 2023-07-09 14:58:22 +01:00
Pavel Odintsov
353cc054ce Steps to unify ban and unban logic 2023-07-09 14:55:11 +01:00
Pavel Odintsov
6c4dfd29a3 Unified interface for call_ban_handlers 2023-07-09 14:37:34 +01:00
Pavel Odintsov
9a77cbff66 Unified logic for execute_ipv6_ban 2023-07-09 14:04:50 +01:00
Pavel Odintsov
b53458d53f Polished network structures and removed unused 2023-07-09 12:57:25 +01:00
Pavel Odintsov
1a8ed44b61 Unified bucket processing logic 2023-07-09 12:52:29 +01:00
Pavel Odintsov
94dfcbad6e Improved IPv6 host traffic counters logic 2023-07-09 12:43:40 +01:00
Pavel Odintsov
b5b2d01702 Added logic to unban via API when hash based counetrs in use 2023-07-08 16:41:21 +01:00
Pavel Odintsov
50d863bedf Added logic to verify that IP belongs our ranges during ban call via API. Added ban logic for hash based counters 2023-07-08 16:33:37 +01:00
Pavel Odintsov
6da6ab78ae Added logic to return ban list when host counters enabled 2023-07-08 16:26:38 +01:00
Pavel Odintsov
22ce3c6bb3 Better method name 2023-07-08 15:34:19 +01:00
Pavel Odintsov
5fe2378117 Fixed bug in direction counters 2023-07-08 15:31:21 +01:00
Pavel Odintsov
df94f28160 Reworked remove_orphaned_buckets to use references. Added bucket cleanup logic for IPv4 host based counters 2023-07-08 15:21:40 +01:00
Pavel Odintsov
5382e0cd3f Added logic to populate traffic buckets logic in IPv4 mode 2023-07-08 15:08:11 +01:00
Pavel Odintsov
609ea6b495 Enagaged logic to increment hash based counters by real traffic 2023-07-08 14:45:57 +01:00
Pavel Odintsov
1e7b7c6b7e Removed empty line 2023-07-08 14:32:40 +01:00
Pavel Odintsov
7ef85e6518 Added logic to print traffic using hash based counters 2023-07-08 14:31:04 +01:00
Pavel Odintsov
34fc85405e Removed unused argument do_redis_update; Renamed ban_list_ipv6_ng to ban_list_ipv6 2023-07-08 14:24:40 +01:00
Pavel Odintsov
7d31b28065 Added function to draw list of IP addresses with traffic when hash based counter was used 2023-07-08 14:18:20 +01:00
Pavel Odintsov
a06d0cca26 Added logic to calculate speed using hash based counters 2023-07-08 14:02:38 +01:00
Pavel Odintsov
c9c8c399b4 Adding new logic to store counetrs in hash 2023-07-08 13:43:14 +01:00
Pavel Odintsov
5f9894285e Added new function to print subnets 2023-07-08 13:34:08 +01:00
Pavel Odintsov
08b3a23847 Split traffic telemetry to be separate for IPv4 and IPv6 2023-07-07 15:58:55 +01:00
Pavel Odintsov
de385da8d5 Adjusted link to usage survey 2023-07-04 14:08:55 +01:00
Pavel Odintsov
b7aa639548 Added extensive documentation about template update logic 2023-07-03 17:55:27 +01:00
Pavel Odintsov
fa71ec7c59 Reworked IPFIX flow set processing and added complete support for inline monitoring services 2023-07-03 17:51:34 +01:00
Pavel Odintsov
65043a5d86 Reworked sampling rate processing logic for IPFIX 2023-07-03 17:42:57 +01:00
Pavel Odintsov
385e136759 Added dozens of new fields for IPFIX 2023-07-03 17:30:36 +01:00
Pavel Odintsov
2c5492f604 Polished IPFIX template processing logic 2023-07-03 17:25:41 +01:00
Pavel Odintsov
0d757f9edd Polished IPFIX options templates parsing logic 2023-07-03 17:22:39 +01:00
Pavel Odintsov
80b6a0a8f9 Made Netflow v9 packet parsing logic more reliable 2023-07-03 17:17:51 +01:00
Pavel Odintsov
0aa2dc5511 Added support for bi-directional flows used by Cisco ASA and improved Netflow Lite aka Inline monitoring services support for Netflow v9 2023-07-03 17:08:37 +01:00
Pavel Odintsov
ea66dab48a Added logic to more precise Netflow v9 flow duration tracking 2023-07-03 16:39:24 +01:00
Pavel Odintsov
04a113205f Moved memory management functions to main file 2023-07-03 16:37:24 +01:00
Pavel Odintsov
4bdf839eca Added new logic to track flow timeouts for Netflow v9. Added new function for samplnig tracking for Netflow v9. Improved Netflow v9 template options processing logic 2023-07-03 16:35:18 +01:00
Pavel Odintsov
93aad63292 Improved process_netflow_v9_template 2023-07-03 16:16:18 +01:00