wanderer/fastnetmon-ng
1
1
Fork 0
Code Issues 2 Pull Requests Projects 1 Releases Activity
2,322 Commits 11 Branches 0 Tags 31 MiB
306d894a13
Commit Graph

1088 Commits

Author SHA1 Message Date
Pavel Odintsov
78a7b039d8 Improved Debian Buster detection. Will use FastNetMon from official repositories instead of manual compilation. Closes #789 2020-01-19 13:09:07 +00:00
Pavel Odintsov
2e587dd678
Fixed bytes per second to mbits conversion to correct formula. It should improve calculation accurancy 
Thanks to Denis Troshanovich for noticing it!
 2019-11-16 13:30:45 +00:00
Yasser Bazzi
50d9706b0f Remove useless booleans. (#780) 
These booleans are not used anywhere on the code.
 2019-11-08 02:06:04 +00:00
Pavel Odintsov
dc07dd3672 Added json-c fix to allow old code on new systems 2019-10-20 20:28:36 +01:00
Pavel Odintsov
f7517de755 Added EPEL 8 install for CentOS 8 2019-10-20 20:19:36 +01:00
Pavel Odintsov
ffafe3afcb Enabled verbose output from git clone to debug installation failures 2019-07-16 19:08:59 +01:00
Pavel Odintsov
511b24f35f Exported distro specific information to ENV 2019-07-16 19:01:44 +01:00
Pavel Odintsov
5517f3c6ff Added missing dependency for CentOS 7 platform 2019-07-14 21:22:07 +01:00
Pavel Odintsov
43f63398f9 Switched tee to append mode to keep install history for all packages 2019-07-14 21:10:32 +01:00
Pavel Odintsov
2ffe1303f6 Added explicit log to installer log file during FastNetMon build 2019-07-14 21:03:48 +01:00
Pavel Odintsov
60d1ed9594 Added suggested steps in case of installation failure 2019-07-14 20:56:40 +01:00
Pavel Odintsov
241aefcbda Removed fencing code 2019-07-14 20:43:49 +01:00
Pavel Odintsov
d887900754 Introduced installer failure tracking 2019-07-14 20:42:34 +01:00
Pavel Odintsov
89f572b0ab Added inplace bugfix for CentOS 6 2019-07-14 20:02:00 +01:00
Pavel Odintsov
9717912725 Added missing dependency required for old compilers 2019-07-14 19:57:22 +01:00
Pavel Odintsov
8530d19a84 Improved install failure reporing 2019-07-14 19:26:13 +01:00
Pavel Odintsov
cde911d8df Replaced die by fast_die to use for install failure reporting 2019-07-14 19:20:24 +01:00
Pavel Odintsov
14ec1fd4ae Added packages required for build process 2019-07-14 19:15:25 +01:00
Pavel Odintsov
24065de7f8 Removed compiler build tools from install script 2019-07-14 12:12:26 +01:00
Pavel Odintsov
88bc9fd68f Fixed install process for systemd enabled distros 2019-07-14 12:06:16 +01:00
Pavel Odintsov
14667413c7 Removed obsoleted option from installer code 2019-07-14 11:51:20 +01:00
Pavel Odintsov
d401df3eee Improved code to guess system-enabled distro 2019-07-14 11:46:39 +01:00
Pavel Odintsov
07479b7e87 Made Term::ANSIColor module optional 2019-07-14 11:25:59 +01:00
Pavel Odintsov
b7bed171ae Added accept clause for unknown action types 2019-07-11 21:20:51 +01:00
Pavel Odintsov
93ead8d3bc
Commented out default hostgroup 2019-07-11 20:58:09 +01:00
Pavel Odintsov
07a832244e Disabled LUA install in default intsaller too due to low demand 2019-07-11 20:50:35 +01:00
Pavel Odintsov
2c87e24d93 Disabled PF_RING for all distros except Ubuntu 12.04 and CentOS 6 2019-07-11 20:39:34 +01:00
Pavel Odintsov
a9e4851c18 Switched to install from repo for Debian 10 2019-07-11 20:16:36 +01:00
Pavel Odintsov
d465fdc998 Added simple command to fix configuration 2019-07-11 20:12:36 +01:00
Pavel Odintsov
90b30824d7 Added some useful commands for installer 2019-07-11 20:07:19 +01:00
Pavel Odintsov
30ced722c4 Added systemd reload command to apply changes 2019-07-11 20:04:01 +01:00
Pavel Odintsov
4790c728eb
Disabled sFlow and Netflow plugins by default 2019-07-11 20:03:04 +01:00
Pavel Odintsov
a20b2ec7ae Added small help file for Ubuntu distros and improved tool security 2019-07-11 20:01:45 +01:00
Pavel Odintsov
efdbf24c0e Switched installer script to using FastNetMon from official repositories for Ubuntu 18.04 and 19.04 2019-07-11 19:55:45 +01:00
Pavel Odintsov
8b5be4990a Added missing dependency file for Netmap. 2019-06-19 19:53:13 +01:00
Pavel Odintsov
4cf49b7bf0 Updated Netmap API headers from version 11 to 14. Closes #764 2019-06-19 10:41:53 +01:00
Pavel Odintsov
6b93996059
Enabled errors for Mikrotik addon 2019-04-29 20:29:05 +01:00
Jasper Lievisse Adriaanse
998b21daa6 only install systemd service files from cmake install on Linux (#760) 2019-04-01 10:15:36 +01:00
Pavel Odintsov
df85edc2dd
Bumped version of FastNetMon for next release 2019-03-31 13:21:46 +01:00
Pavel Odintsov
01ae34143d
Switched installer to version 1.1.4 2019-03-31 12:52:09 +01:00
Pavel Odintsov
38bf681f18
Fixed build process for json-c on systems with fresh gcc (#752) 2019-02-13 22:20:23 +00:00
Pavel Odintsov
59f990dc56
Added more updates for Mikrotik 2019-02-13 19:52:28 +00:00
Pavel Odintsov
0123a22d48
Added details about configuration for Mikrotik 2019-02-13 19:51:05 +00:00
Pavel Odintsov
978289dd29
Fixed insecure permissions for /tmp/fastnetmon.dat (#749) 2018-12-19 23:06:51 +00:00
Christian David
571ea4847a Juniper Implementation (#747) 2018-12-06 17:33:42 +00:00
Dmitriy Limonov
f527101e62 Added decoding of the outer vlan tag in sflow packets. (#736) 
* Added decoding of the outer vlan tag in sFlow packets for QnQ
 2018-09-28 16:59:49 +01:00
Pavel Odintsov
64ef4bd012
Added privacy policy 2018-09-17 00:14:22 +01:00
Alexander Astashov
bccc10d50d issues/682 v4 (#727) 
Added support for host addresses in whitelist.  Closes #682
 2018-08-02 23:55:01 +01:00
Pavel Odintsov
a330d92b8c
Added executable bit and details for advanced 2018-07-24 23:24:10 +01:00
Pavel Odintsov
2f497ad7e6
Added PHP interpreter install 2018-07-24 23:02:44 +01:00
Pavel Odintsov
c9b7ba8987
Moved guide about route collector to site 2018-07-21 13:24:55 +01:00
Hidde van der Heide
68827f3931 Skipp non-protable CPU affinity code on non-GNU libc platforms 2018-07-15 07:32:33 +00:00
Pavel Odintsov
25221a2334
Merge pull request #723 from jasperla/cmake 
turn several hardcoded "options" into a real options
 2018-07-18 09:58:45 +01:00
Jasper Lievisse Adriaanse
17318e452a turn several hardcoded "options" into a real options 
This makes setting the following variables easier:
ENABLE_NETMAP_SUPPORT
ENABLE_DPI_SUPPORT
ENABLE_LUA_SUPPORT (was overridable but not a real option)
 2018-07-14 18:13:07 +02:00
Jasper Lievisse Adriaanse
1ba1298e8e Define DLT_LINUX_SLL in case it's not already defined 2018-07-12 08:24:31 +02:00
Jasper Lievisse Adriaanse
d02c20b3e8 add support for OpenBSD 2018-07-11 16:41:24 +02:00
Pavel Odintsov
6bc480b523
Fixed colon 2018-03-04 20:49:22 +00:00
Pavel Odintsov
c965a84afa
Fixed console colors 2018-03-04 20:48:57 +00:00
Pavel Odintsov
d326867792
Added UTM tags for install script 2018-03-04 20:41:52 +00:00
Pavel Odintsov
2e4ac87c59
Merge pull request #711 from trodery/trodery-documentation-changes 
Cleaning up of various documentation
 2018-03-01 21:26:29 +00:00
Terry Rodery
3cef12ae4a rephrase 2018-03-01 13:32:55 -06:00
Terry Rodery
97c953e8ee clean-up/rephrase 2018-03-01 13:32:36 -06:00
Terry Rodery
4259d82158 change header format 2018-03-01 13:31:35 -06:00
Terry Rodery
f57e02356b rephrase a few things 2018-03-01 13:30:04 -06:00
Terry Rodery
10f04f1700 clean-up and reformat 2018-03-01 13:29:33 -06:00
Terry Rodery
19116c3feb clean-up and migrate to README.md 2018-03-01 13:28:58 -06:00
Terry Rodery
ed34eb236c
Update README.md grammar and formatting 
Some suggested grammatical and formatting changes
 2018-02-28 09:40:27 -06:00
Pavel Odintsov
8e1fb0b076 Do not call exit from thread. Fixes #706 2018-02-13 21:26:04 +00:00
Benjamin Drung
1fdf32aec6 Link against atomic if __atomic_add_fetch_8 is missing 
src/fastnetmon.cpp uses __atomic_add_fetch(). Some architectures (like
mips, mipsel, m68k, powerpc, sh4) do not provide these built-in
functions and need to link against atomic to provide this function.

closes #703
Bug-Debian: https://bugs.debian.org/869805
 2018-02-05 23:21:12 +01:00
Pavel Odintsov
b6e6843d2e Introduced cmake option to enable memory model aware atomics 2018-02-04 13:19:44 +00:00
Pavel Odintsov
d5711bb3da Added support for Memory Model Aware Atomic Operations 2018-02-04 13:10:57 +00:00
Benjamin Drung
bdf4bdc395 Support nDPI 2.1 
The parameters to ndpi_init_detection_module() were changed in nDPI 1.8,
but only nDPI 2.1 gained support for NDPI_MAJOR header variables.
Therefore the preprocessor check works for new versions of nDPI, but not
for nDPI between 1.8 and 2.0. This is the best we can get. Fixes more or
less #597.

Signed-off-by: Benjamin Drung <benjamin.drung@profitbricks.com>
 2018-01-31 12:49:00 +01:00
Benjamin Drung
10afb25751 Support nDPI 2.2 
nDPI 2.0 renamed detected_protocol.protocol to
detected_protocol.app_protocol (to avoid confusion).

fixes #699
Bug-Debian: https://bugs.debian.org/887623
 2018-01-30 10:46:39 +01:00
Pavel Odintsov
c74470e92d Fixes #690. Added ifconfig to dependencies for CentOS 7 2017-12-19 12:30:44 +00:00
Pavel Odintsov
61ba9e429b
Moved Docker file to src 2017-12-03 22:05:52 +00:00
Pavel Odintsov
1fdde91cbb Fixed bunch of paths to old versions of FNM 2017-12-03 21:22:11 +00:00
Benjamin Drung
a4d2d8170a Support setting ENABLE_LUA_SUPPORT 
To allow users to disable Lua support, do not overwrite the
ENABLE_LUA_SUPPORT variable. Instead just set the default if it is not
set yet.
 2017-08-24 16:39:15 +02:00
Pavel Odintsov
1ccfc2fbab Added pretty colors and reworked text to make it clear why we ask email addresses 2017-07-29 18:45:36 +01:00
Pavel Odintsov
136b9c7c0f Reworked parser code to avoid Netmap dependencies 2017-07-27 23:09:58 +00:00
Pavel Odintsov
b480f3590f Introduced an option to disable Netmap plugin 2017-07-27 23:19:33 +01:00
Pavel Odintsov
1b9c49500e Fixes #602 Do not attempt to push blank dataset into Graphite 2017-07-27 22:26:56 +01:00
Pavel Odintsov
95157e88bd GoBGP project re-licensed this file in BSD terms for us instead of Apache 2 licenses. Issue reference: https://github.com/osrg/gobgp/issues/1384 2017-07-26 09:46:40 +01:00
Pavel Odintsov
7c615e9ae1 Removed code which uses x86_only features to fix https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869621 2017-07-25 19:53:15 +01:00
Pavel Odintsov
176f4d2d1e Removed unused code 2017-07-24 12:54:24 +01:00
Pavel Odintsov
da8a4ca97f Removed all GeoIP files from repo. We never used them in production code. They was added for testing purpoposes 2017-07-21 19:00:01 +01:00
Pavel Odintsov
7f787c0be0 Also set modern version in cmake build system 2017-06-24 21:43:43 +01:00
Pavel Odintsov
c62243ede1 Introduced option --use-modern-pf-ring to install latest PF_RING (6.6.0 at this moment) 2017-06-24 21:15:17 +01:00
Pavel Odintsov
1f7896d2e5 #646: Since this commit we will use our own mirror for all dependencies located on GitHub 2017-06-17 23:03:21 +01:00
Benjamin Drung
4fb2096c3a Install sysvinit script on Debian/Ubuntu 
On Debian/Ubuntu systems, install the sysvinit script (in addition to
the systemd service file).
 2017-05-30 11:11:39 +02:00
Benjamin Drung
fb13a55c5d Add documentation key to systemd service file 
Documentation for systemd service files can be automatically viewed
using systemctl help servicename if this field is present. Thus add the
relevant man page, the local and online documentation to the
documentation key.
 2017-05-29 16:54:27 +02:00
Benjamin Drung
f397d61593 Install fastnetmon.service with cmake 
The path to the fastnetmon daemon might differ, thus use configure_file
to set the path dynamically.
 2017-05-29 16:50:23 +02:00
Benjamin Drung
28fbaa5d1a Use variables for installation paths 
The installation paths differ for Linux and BSD. Thus use variables for
defining installation paths to avoid duplicating install commands.
 2017-05-29 16:45:36 +02:00
Pavel Odintsov
1cb80c26b0 Fixed critical bug in IPv6 direction detection code 2017-05-20 19:05:18 +01:00
Benjamin Drung
70da8c54c6 Fix typo criticial -> critical 
Fix typo and use full sentences.
 2017-05-08 17:14:33 +02:00
Benjamin Drung
6b09a7b190 Fix typo programm -> program 2017-05-08 16:21:52 +02:00
Pavel Odintsov
d08f617aee #651: reduced logging level for threshold related messages 2017-04-17 21:49:17 +03:00
Pavel Odintsov
e4452170c0 Add notice about FNM Advanced 2017-04-15 22:02:21 +04:00
dmayan
84067a4e10 Added logging to router syslog 
Added logging in router's log for banning and unbanning. Useful for reporting and alert management.
 2017-04-13 14:41:47 -03:00
Henry Spanka
eb3d6ebd66 Restart Fastnetmon when it fails 
Sometimes FastNetMon crashes due to Segfaults and to prevent an outage of the DDoS Sensor we should immediately restart it.
 2017-04-02 22:10:55 +02:00
Eric Chou
fdd37b3140 a10.py modification for PEP476, updated REDME.md 2017-03-18 17:39:23 +00:00
Theodore Baschak
ed8b3caae4 add RFC7999 BGP Blackhole community (65535:666) to routes added 2016-12-27 03:17:24 -06:00
Джуринский Александр
1b5c0b9cc8 add txt extension for attacks details files 2016-11-27 00:06:09 +03:00
Pavel Odintsov
a1659df66a Merge pull request #595 from evgkrsk/unify-logging 
Try to unify syslog logging with local file logging
 2016-11-18 23:25:35 +00:00
Alexandr Dzhurinskij
6bed9dcea2 Add custom path to log file 2016-11-09 18:45:56 +03:00
Pavel Odintsov
ec092ae702 Fix about absent support of domains names 2016-11-07 01:12:23 +00:00
Evgenii Terechkov
f3ba619553 Try to unify syslog logging with local file logging 2016-11-04 23:45:02 +07:00
damiankam
2a5e5df2eb fix in 'parse_hostgroups' - return on split error and trim spaces 2016-09-25 17:54:40 +03:00
damiankam
79b55d0390 add trim while processing lines from config file 2016-09-25 14:00:22 +03:00
damiankam
68498d1302 fix redis log 2016-09-24 21:21:45 +03:00
Pavel Odintsov
70bbdf9483 Add addres to new site 2016-09-10 07:23:58 +03:00
Pavel Odintsov
6e07a08bec Remove space at the end of "ban_for_tcp_pps" line 2016-09-09 09:06:31 +03:00
Shrivatsan Rajagopalan
8071a7e7b5 Minor typo fix. 2016-09-06 14:53:17 -07:00
Pavel Odintsov
12b31c67ae Disable annoying message "Received ipfix options flowset id, which is not supported" 2016-08-26 21:40:09 +03:00
Eric Chou
b6b4807532 updated ddos_dst_zone.py 2016-08-22 17:09:24 -07:00
Eric Chou
5b378e1755 Merge branch 'master' of https://github.com/ericchou1/fastnetmon 
latest pull for updated base and zone config
 2016-08-22 16:51:58 -07:00
Pavel Odintsov
04640eb011 Since this commit we could install kernel headers for current centos kernel 2016-08-20 19:55:30 +03:00
Pavel Odintsov
009b8b7caa Add notification about install log 2016-08-20 15:01:06 +03:00
Pavel Odintsov
cd168e9c06 Remove log4cpp from Epel from dependency list for CentOS 7 2016-08-20 14:52:42 +03:00
Rich Groves
67a1fc61cc added README for configs 2016-08-19 16:36:41 -07:00
Rich Groves
77833fa287 added tps_zone_config and tps_base_config v1 2016-08-19 13:32:35 -07:00
Rich Groves
e82bfdbe46 added tps_zone_config and tps_base_config v1 2016-08-19 13:27:27 -07:00
Pavel Odintsov
9e6625dec8 Add ability to mitigate mixed attacks. Code originally prepared by https://github.com/dalibort I've just pushed it 2016-08-19 22:43:16 +03:00
Pavel Odintsov
4dab31e3b7 Move flow_spec publish code into separate function. This code orininally written by https://github.com/dalibort I've just extracted it from PR :) 2016-08-19 22:36:40 +03:00
Pavel Odintsov
032f25847f Fix mistake found my CI 2016-08-19 22:26:41 +03:00
Pavel Odintsov
c4fc2d6954 Rework flow zerofication code 2016-08-19 22:18:56 +03:00
Pavel Odintsov
cd0121acba Merge pull request #547 from dalibort/ndpi 
Fix ndpi processing code
 2016-08-19 22:03:41 +03:00
root
178f9b94a3 produce_dpi_dump_for_pcap_dump() - log possible problem when reading pcap file 2016-08-19 10:46:39 +02:00
root
66ab5c072b - changes in produce_dpi_dump_for_pcap_dump() 
- added logging of stats from DPI
 2016-08-18 16:11:40 +02:00
root
34eacf3e42 - changes in produce_dpi_dump_for_pcap_dump() 
- solved problem with only first packet beign analyzed by DPI
  - optimised memory allocations
  - prevent possible memory leaks when memsetting flow variable
 2016-08-18 15:45:08 +02:00
Pavel Odintsov
33d5b9dd63 Merge pull request #543 from ericchou1/master 
Cumulative update Aug. 15, 2016 for mitigation script v0.3, base and zone configs, etc.
 2016-08-15 18:42:16 +03:00
Eric Chou
70c388abdc adding new .gitignore and json_configs files 2016-08-13 12:06:55 -07:00
Eric Chou
e47200aebb adding fastnetmon_a10_v0.3.py 2016-08-13 11:49:38 -07:00
Pavel Odintsov
963cec7bc9 Remove bad code for Travis from installer 2016-08-13 12:57:01 +03:00
Eric Chou
e1eef5e94f version 0.3 changes 2016-08-12 20:15:27 -07:00
Eric Chou
7ba4629012 Merge branch 'master' of https://github.com/pavel-odintsov/fastnetmon 2016-08-12 14:51:11 -07:00
Pavel Odintsov
4aeb451f13 Add explicit path to clang for Travis build 2016-08-12 00:30:16 +03:00
Pavel Odintsov
c06118088f Fix build script: fix ndpi compatibility issue 2016-08-11 22:51:37 +03:00
Ronan Daly
b94dd5e62d Added a script for Slack notifications called notify_with_slack.sh 2016-08-09 18:56:35 +01:00
Rich Groves
26d8a731bb updated A10 configs and added JSON configs 2016-07-28 15:28:39 -04:00
Rich Groves
4cd66ad4ab added tps_zone_config_v1.txt 2016-07-27 22:42:27 -04:00
Rich Groves
f42ca16794 modify tps_base_config_v1.txt 2016-07-27 22:34:27 -04:00
Rich Groves
a6ce3d1cd9 adding tps_base_config_v1.txt 2016-07-27 22:22:44 -04:00
Eric Chou
7ff8787202 change README.md 2016-07-27 16:49:50 -07:00
Eric Chou
5b8575f6ef change A10 TPS to A10 Thunder TPS, added sample test outputs 2016-07-27 16:47:38 -07:00
Pavel Odintsov
cb459556ac Merge pull request #537 from ericchou1/master 
Add A10 Plugin
 2016-07-27 10:16:05 +03:00
Eric Chou
13e112f239 added test folder, fastnetmon_a10_v0.2.py 2016-07-26 19:41:50 -07:00
Eric Chou
899952dc41 v0.3 fastnetmon_a10_v0.2 break URI path and json config body into separate files under json_config folder 2016-07-18 14:45:49 -07:00
Eric Chou
86a697dda4 added config folder 2016-07-18 13:54:19 -07:00
Eric Chou
641e8ed9a1 Update README.md 2016-07-12 14:00:32 -07:00
Eric Chou
1e60d676a3 Added example to README.md 2016-07-12 13:57:37 -07:00