wanderer/ fastnetmon-rewritten
1
0
Fork 0
mirror of https://github.com/pavel-odintsov/fastnetmon synced 2024-06-06 23:06:26 +02:00
Code Issues Releases Activity

updated ddos_dst_zone.py

This commit is contained in:
Eric Chou 2016-08-22 17:09:24 -07:00
parent 5b378e1755
commit b6b4807532
1 changed files with 399 additions and 73 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

472
src/a10_plugin/json_configs/ddos_dst_zone.py
View File

@ -3,99 +3,425 @@ ddos_dst_zone_path = '/axapi/v3/ddos/dst/zone/'
def ddos_dst_zone(zone_name, ip_addr):
ddos_dst_zone_payload = {
"zone-list": [
"zone-list": [
{
"zone-name":zone_name,
"ip": [
{
"zone-name":zone_name,
"ip": [
{
"ip-addr":ip_addr
}
],
"operational-mode":"monitor",
"advertised-enable":1,
"zone-template": {
"logging":"cef-logger"
"ip-addr": ip_addr,
}
],
"operational-mode":"monitor",
"advertised-enable":1,
"zone-template": {
"logging":"cef-logger"
},
"log-enable":1,
"log-periodic":1,
"ip-proto": {
"proto-tcp-udp-list": [
{
"protocol":"tcp",
"drop-frag-pkt":1,
},
"log-enable":1,
"log-periodic":1,
"ip-proto": {
"proto-tcp-udp-list": [
{
"protocol":"udp",
"drop-frag-pkt":1,
}
],
"proto-name-list": [
{
"protocol":"icmp-v4",
"deny":1,
"detection-enable":1,
},
{
"protocol":"icmp-v6",
"deny":1,
"detection-enable":1,
}
]
},
"port": {
"zone-service-list": [
{
"port-num":20,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"protocol":"tcp",
"drop-frag-pkt":1,
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"protocol":"udp",
"drop-frag-pkt":1,
}
],
"proto-name-list": [
{
"protocol":"icmp-v4",
"deny":1,
"detection-enable":1,
},
{
"protocol":"icmp-v6",
"deny":1,
"detection-enable":1,
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
"port": {
"zone-service-other-list": [
{
"port-num":21,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"port-other":"other",
"protocol":"tcp",
"detection-enable":1,
"level-list": [
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"port-other":"other",
"protocol":"udp",
"detection-enable":1,
"level-list": [
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":22,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"udp":"udp-protect1"
},
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":25,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":53,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":53,
"protocol":"udp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"udp":"udp-protect1"
},
}
]
},
{
"port-num":80,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":110,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":143,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":443,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":587,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":993,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":995,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":5060,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
},
{
"port-num":5061,
"protocol":"tcp",
"detection-enable":1,
"level-list": [
{
"level-num":"0",
"zone-escalation-score":10,
"indicator-list": [
{
"type":"pkt-rate",
"score":20,
"zone-threshold-num":1,
}
]
},
{
"level-num":"1",
"zone-template": {
"tcp":"tcp-protect1"
},
}
]
}
}
]
],
"zone-service-other-list": [
{
"port-other":"other",
"protocol":"tcp",
"detection-enable":1,
"deny":1,
},
{
"port-other":"other",
"protocol":"udp",
"detection-enable":1,
"deny":1,
}
]
}
}
]
}
return ddos_dst_zone_payload