fastnetmon-rewritten

mirror of https://github.com/pavel-odintsov/fastnetmon synced 2024-09-22 22:20:56 +02:00

Author	SHA1	Message	Date
Pavel Odintsov	a629f85a41	Attack details printer refactoring	2015-07-15 11:14:02 +02:00
Pavel Odintsov	db896babdb	Add docs about MongoDB	2015-07-15 00:33:11 +03:00
Pavel Odintsov	25334fb8cd	Merge branch 'master' of https://github.com/FastVPSEestiOu/fastnetmon	2015-07-14 23:29:58 +02:00
Pavel Odintsov	d770742cc4	Add docs about MongoDB	2015-07-14 23:29:44 +02:00
Pavel Odintsov	6de0bf864b	Add working mongodb client code	2015-07-14 23:25:04 +02:00
Pavel Odintsov	f20cc7eecc	Merge pull request #329 from Phinitris/patch-2 Debian 7(wheezy) still uses sysvinit	2015-07-15 00:15:37 +03:00
Phinitris	e763978e58	Debian 7(wheezy) still uses sysvinit Seems like a typo here. Debian wheezy does not have systemd support.	2015-07-14 23:12:27 +02:00
Pavel Odintsov	5c4a7f25fd	Fix about input	2015-07-14 19:13:05 +03:00
Pavel Odintsov	29bced294d	Switch to firehose application from SnabbSwitch from the custom code! Thanks to Luke!	2015-07-14 18:10:35 +02:00
Pavel Odintsov	c6ceadde03	Ability to disable all compains from Netmap	2015-07-14 16:40:40 +02:00
Pavel Odintsov	0301301898	Merge branch 'master' of https://github.com/FastVPSEestiOu/fastnetmon	2015-07-14 16:04:40 +02:00
Pavel Odintsov	7c661e9317	Add fix about RHEL 6	2015-07-14 16:02:18 +02:00
Pavel Odintsov	f785630ded	Add Git Clone about ExaBGP	2015-07-14 16:10:30 +03:00
Pavel Odintsov	0003ff1655	Move parser code to separate function	2015-07-14 14:57:32 +02:00
Pavel Odintsov	2b50f4f9f0	Integrate BGP Flow Spec library to the main project	2015-07-14 14:56:23 +02:00
Pavel Odintsov	6e980b3170	Merge branch 'master' of https://github.com/FastVPSEestiOu/fastnetmon	2015-07-14 14:55:01 +02:00
Pavel Odintsov	191047d6fb	Upgrade netmap header files to latest version from the Git	2015-07-14 14:54:22 +02:00
Pavel Odintsov	cbfd426bcd	Add example about usage of multiple communities in ExaBGP announces	2015-07-14 14:57:09 +03:00
Pavel Odintsov	a87c07270b	Add docs about flow spec configuration on Git's ExaBGP	2015-07-13 17:56:39 +02:00
Pavel Odintsov	299e03b629	Add single line ExaBGP v4 format of Flow Spec representation; Offer ability to specify custom sentence separator; Class refactoring;	2015-07-13 17:00:20 +02:00
Pavel Odintsov	2195342c4a	Grant simple access to incoming and outgping ports for netflow	2015-07-13 15:21:02 +02:00
Pavel Odintsov	dd42422ec1	Add complete integration tests and real call to ExaBGP for configurartion checks	2015-07-13 14:36:50 +02:00
Pavel Odintsov	00532de6aa	Add tests for complete match/than blocks generatio	2015-07-13 14:17:05 +02:00
Pavel Odintsov	032838205c	Added TCP flags support to the BGP Flow Spec class; Added tests for it; Added tests for serializers.	2015-07-13 12:27:09 +02:00
Pavel Odintsov	cf2928ea6d	Have finished Google Test integration to the project. Closes #325	2015-07-13 10:05:26 +02:00
Pavel Odintsov	d025c8bc84	Add tests for BGP Flow SPec	2015-07-12 18:34:00 +03:00
Pavel Odintsov	0e16079449	Add full config generation for ExaBGP for testing purposes	2015-07-10 18:08:06 +02:00
Pavel Odintsov	334ee45618	Add Flow Spec example	2015-07-10 14:45:59 +02:00
Pavel Odintsov	2e1af91f1b	Almost finished supoort for Flow Spec generation in ExaBGP format	2015-07-10 14:43:46 +02:00
Pavel Odintsov	f169c5f86d	Add letters support for PCI addresses	2015-07-09 04:52:01 -04:00
Pavel Odintsov	3e16184068	Add BGP flow spec implementation stub	2015-07-08 11:45:33 -04:00
Pavel Odintsov	3e89fd8f9b	Disable prefetch, enable packet printer code	2015-07-08 06:44:44 -04:00
Pavel Odintsov	60e12427f3	Merge pull request #322 from lukego/snabb-static-rx snabb: Optimization and support for multiple PCI devices	2015-07-08 13:07:35 +03:00
Luke Gorrie	c3d57b2fef	snabb: Support processing multiple NICs Update the command-line usage so that multiple NICs can be served by a single process. This is intended to help find performance limits. New usage: Usage: capture2c <pciaddress>[,<pciaddress>...] <callback.so> [npackets] Capture network traffic from one or more Intel 82599 NICs (comma-separated "pciaddress" list) and pass each packet to a callback function defined in a shared library "callback.so". The optional "npackets" parameter sets the number of packets in the hardware receive queue. This may (or my not) be interesting for performance tuning.	2015-07-08 11:57:12 +02:00
Luke Gorrie	0af7200606	snabb: Optimize with static RX initialization From the comments: We are using a special-purpose receive method designed for fast packet capture: Statically allocate all packet buffers. Statically initialize the hardware RX descriptor ring to point to the preallocated packets. Have the C callback loop directly over the RX ring to process the packets that are ready. This means that no work is done to allocate and free buffers or to write new descriptors to the RX ring. This is expected to have extremely low overhead to recieve each packet.	2015-07-08 11:42:59 +02:00
Pavel Odintsov	990d09e8e9	Fix configuration	2015-07-07 15:59:37 -04:00
Pavel Odintsov	d986468374	We have introduced host groups :) You could specify custom ban options for different subnets	2015-07-07 15:57:19 -04:00
Pavel Odintsov	984f01384e	Introduce configuration parser for host groups	2015-07-07 12:47:39 -04:00
Pavel Odintsov	c2e0146a39	Get rid gloval ban settings completely	2015-07-07 11:54:38 -04:00
Pavel Odintsov	57a273cba8	Move out from global ban settings	2015-07-07 11:48:47 -04:00
Pavel Odintsov	bd8fd925ae	Merge pull request #319 from Phinitris/patch-1 Adding myVirtualserver.com to Happy Customers	2015-07-07 14:51:08 +03:00
Phinitris	6e416bc8fb	Adding myVirtualserver.com to Happy Customers	2015-07-07 13:49:46 +02:00
Pavel Odintsov	eaf84fe525	Implement sorter for subnet traffic. Closes #304	2015-07-07 11:39:33 +03:00
Pavel Odintsov	d253ebc6d7	Add pretty network printer	2015-07-07 10:39:05 +03:00
Pavel Odintsov	7d9354340b	Add optimization flag. 8 mpps => 10 mpps	2015-07-06 18:02:54 +03:00
Pavel Odintsov	c2d6252394	Add fix for compilation	2015-07-06 17:37:38 +03:00
Pavel Odintsov	f86f1fd583	Merge pull request #318 from lukego/auto-unbind-pci-device snabb/README.md: Howto return the NIC to ixgbe	2015-07-06 14:32:16 +03:00
Pavel Odintsov	bdb59067cf	Add Tins performance evaluation. It's very SLOW! They do so much memory allocations/deallocations in source code. Samples: 8K of event 'cpu-clock', Event count (approx.): 1832523402 21.19% libc-2.19.so [.] _int_free 18.51% libc-2.19.so [.] malloc 12.14% libc-2.19.so [.] _int_malloc 5.77% a.out [.] Tins::TCP* Tins::PDU::find_pdu<Tins::TCP>(Tins::PDU::PDUType) 4.36% libtins.so.3.3 [.] Tins::PDU::matches_flag(Tins::PDU::PDUType) const 3.68% a.out [.] call_tins_parser(void, int) 3.25% a.out [.] Tins::IP Tins::PDU::find_pdu<Tins::IP>(Tins::PDU::PDUType) 2.29% libtins.so.3.3 [.] Tins::IP::IP(unsigned char const, unsigned int) 70 EthernetII::EthernetII(const uint8_t buffer, uint32_t total_sz) 71 { 72 if(total_sz < sizeof(ethhdr)) 73 throw malformed_packet(); 74 memcpy(&_eth, buffer, sizeof(ethhdr)); 75 buffer += sizeof(ethhdr); 76 total_sz -= sizeof(ethhdr); 77 if(total_sz) { 78 inner_pdu( 79 Internals::pdu_from_flag( 80 (Constants::Ethernet::e)payload_type(), 81 buffer, 82 total_sz 83 ) 84 ); 85 }	2015-07-06 06:33:21 -04:00
Luke Gorrie	b2a8bd1dd9	snabb/README.md: Howto return the NIC to ixgbe Document how to return the NIC to the kernel ixgbe driver after using it with Snabb Switch. (Snabb Switch automatically unbinds the device from the kernel driver so you don't have to unload the ixgbe module.)	2015-07-06 09:42:11 +02:00
Pavel Odintsov	80eedd85a9	Add tins to parser tests	2015-07-05 17:19:03 -04:00

... 2 3 4 5 6 ...

1426 Commits