Revisions of ntopng
Dirk Stoecker (dstoecker)
accepted
request 913620
from
Martin Hauke (mnhauke)
(revision 8)
- Update to version 5.0 Breakthroughs * Advanced alerts engine with security features, including the detection of attackers and victims. + Integration of 30+ nDPI security risks. + Generation of the score indicator of compromise for hosts, interfaces and other network elements. * Ability to collect flows from hundredths of routers by means of observation points. * Anomaly detection based on Double Exponential Smoothing (DES) to uncover possibly suspicious behaviors in the traffic and in the score. * Encrypted Traffic Analysis (ETA) with special emphasis on the TLS to uncover self-signed, expired, invalid certificates and other issues. New features * Ability to configure alert exclusions for individual hosts to mitigate false positives. * Ability to see the TX/RX traffic breakdown both for physical interfaces and when receiving traffic from nProbe. * Add support for ECS when exporting to Syslog. * Improved TCP analysis, including analysis of TCP flows with zero window and low goodput. * Ability to send alerts to Slack. * Implementation of a token-based REST API access. Improvements * Reworked the execution of hosts and flows checks (formerly user scripts), yielding a reduced CPU load of about 50% . * Improved 100Kfps+ NetFlow/sFlow collection performance. * Drilldown of nIndex historical flows much more flexible.
Martin Hauke (mnhauke)
accepted
request 888104
from
Mathias Homann (lemmy04)
(revision 7)
- Update to ntopNG 4.2 * had to manually specify the mysql include dir - something weird is going on.
Martin Hauke (mnhauke)
accepted
request 799650
from
Petr Cervinka (czerw)
(revision 6)
- Add ntopng.target unit file - Remove ntopctl script - Obsolete old ntopng-data package - Major package changes: * Remove displaying setup information from post section, it duplicates content of README.SUSE * Add patch to avoid static linking against bundled ndpi library 001-Enable-building-against-the-dynamic-libndpi-library.patch * Remove bundled ndpi library * Remove GeoIP data, GeoIP has been discontinued by Maxmind https://support.maxmind.com/geolite-legacy-discontinuation-notice/ https://github.com/ntop/ntopng/blob/dev/doc/README.geolocation.md * Add geoipupdate to recommends * Add directory /var/lib/ntopng * Add creation of ntopng user * Use default ntopng.conf provided by upstream * Update description in ntopng.service file * Fix requires in ntopng.service file * Remove sysconfig configuration file * Add ntopng@.service file to have possibility of multiple configuration files * Update SUSE.README about multiple configuration filesqq - Update to version 4.0: Breakthroughs * Plugins engine to tap into flows, hosts and other network elements * Migration to Bootstrap 4 and Font Awesome 5 for a renewed ntopng look-and-feel with light and dark themes * Processes and containers monitoring thanks to the eBPF integration via libebpfflow https://github.com/ntop/libebpfflow * Active monitoring of hosts ICMP/ICMPv6/HTTP/HTTPS Round Trip Times (RTT)
Martin Hauke (mnhauke)
accepted
request 779410
from
Petr Cervinka (czerw)
(revision 5)
- Add README.SUSE to %doc and source section - Apply spec-cleaner
Lars Vogdt (lrupp)
accepted
request 759223
from
Martin Hauke (mnhauke)
(revision 4)
- Update to version 3.8.1 * Make the stable version compatible to build with nDPI 3.0 - Update bundled nDPI to version 3.0
Lars Vogdt (lrupp)
accepted
request 673005
from
Martin Hauke (mnhauke)
(revision 3)
- Update to version 3.8 * Lots of new features, improvements and bufixes See /usr/share/doc/packages/ntopng/CHANGELOG.md for the full changelog - Specfile cleanup - Run spec-cleaner - Use pkg-config style dependencies - Add conditional build for nEdge (disabled by default) - Add conditional build for libndpi * ntopng currently only supports building against a static version of libndpi
Lars Vogdt (lrupp)
accepted
request 501383
from
Petr Cervinka (czerw)
(revision 2)
- Spec file completely redesigned - GeoIP data provided as a new subpackage - Highlighted proper license for GeoIP data - Init scripts migrated to systemd unit file - Updated make compiler flags to build package on Tumbleweed - Filter out rpmlint errors and warnings - Added README.SUSE with steps how to configure redis
Lars Vogdt (lrupp)
accepted
request 459477
from
Joop Boonen (worldcitizen)
(revision 1)
Please ad this usefull package to server:monitoring
Displaying all 8 revisions