fastnetmon-rewritten/src/fastnetmon.conf

enable_ban = on
ban_time = 1900
ban_for_pps = on
ban_for_bandwidth = on
ban_for_flows = off
threshold_pps = 20000
threshold_mbps = 1000
threshold_flows = 3500
ban_details_records_count = 500
redis_port = 6379
redis_host = 127.0.0.1
check_period = 1
sort_parameter = packets
max_ips_in_list = 7
notify_script_path = /usr/local/bin/notify_about_attack.sh
redis_enabled = no
interfaces = eth3,eth4
netflow = off
netflow_port = 2055
netflow_host = 0.0.0.0
sflow = off
sflow_port = 6343
sflow_host = 127.0.0.1
mirror = on
mirror_netmap = off
pcap = off
average_calculation_time = 5
enable_connection_tracking = off
enable_pf_ring_zc_mode = off
process_incoming_traffic = on
process_outgoing_traffic = on
Replace EVN variable with configuration param 2014-12-05 10:46:01 +01:00			`enable_ban = on`
Move ban_time to configuration file 2014-12-03 16:03:47 +01:00			`ban_time = 1900`
Introduce ability to enable/disable different types of attack detection algorithms 2014-12-02 16:07:33 +01:00			`ban_for_pps = on`
			`ban_for_bandwidth = on`
			`ban_for_flows = off`
Add config example and fix notify script 2014-06-09 11:06:59 +02:00			`threshold_pps = 20000`
Fix in example config 2014-10-29 10:33:11 +01:00			`threshold_mbps = 1000`
Fix bug with parameter name ban_threshold_flows 2014-12-03 15:25:49 +01:00			`threshold_flows = 3500`
Fix ugly space at end of line which produce memory leak 2014-12-19 09:39:41 +01:00			`ban_details_records_count = 500`
Add config example and fix notify script 2014-06-09 11:06:59 +02:00			`redis_port = 6379`
			`redis_host = 127.0.0.1`
We can update screen every second! Nice 2014-12-04 17:12:45 +01:00			`check_period = 1`
Add config example and fix notify script 2014-06-09 11:06:59 +02:00			`sort_parameter = packets`
			`max_ips_in_list = 7`
			`notify_script_path = /usr/local/bin/notify_about_attack.sh`
disable redis traffic counter by default 2014-06-09 12:33:07 +02:00			`redis_enabled = no`
Introduce ability to specify work interfaces in config file 2014-06-22 13:06:48 +02:00			`interfaces = eth3,eth4`
Introduce beta version of netflow plugin 2015-01-23 17:49:37 +01:00			`netflow = off`
Provide ability to change sflow/netflow collectors default ports; Close #101 2015-03-12 19:56:55 +01:00			`netflow_port = 2055`
Provide ability to specify certain host for netflow mode 2015-03-15 21:02:24 +01:00			`netflow_host = 0.0.0.0`
Production ready sFLOW support 2014-12-02 13:43:34 +01:00			`sflow = off`
Provide ability to change sflow/netflow collectors default ports; Close #101 2015-03-12 19:56:55 +01:00			`sflow_port = 6343`
Provide ability to specify specific host for sflow collector 2015-03-15 21:11:56 +01:00			`sflow_host = 127.0.0.1`
Production ready sFLOW support 2014-12-02 13:43:34 +01:00			`mirror = on`
Add mirror_netmap param to example fastnetmon.conf 2015-03-10 15:17:01 +01:00			`mirror_netmap = off`
We implemented complete PCAP support in separate plugin. Please be aware! It's very slow! Closes #100 2015-01-27 10:56:16 +01:00			`pcap = off`
Prettify average speed counter 2014-12-02 15:11:27 +01:00			`average_calculation_time = 5`
Add ability to enable/disable ZC mode with configuation key 2014-12-19 13:56:54 +01:00			`enable_connection_tracking = off`
			`enable_pf_ring_zc_mode = off`
Enable processing in both directions by default 2015-01-28 08:50:36 +01:00			`process_incoming_traffic = on`
Provide ability to skip outgoing or incoming traffic precessing competely. Closes: #63 2015-01-28 08:49:12 +01:00			`process_outgoing_traffic = on`