ProHoster > Блог > labaran intanet > Sakin nDPI 4.8 tsarin duba fakiti mai zurfi

Sakin nDPI 4.8 tsarin duba fakiti mai zurfi

Aikin ntop, wanda ke haɓaka kayan aiki don kamawa da kuma nazarin zirga-zirga, ya buga sakin nDPI 4.8 zurfin duba kayan aikin fakiti, wanda ke ci gaba da haɓaka ɗakin karatu na OpenDPI. An kafa aikin nDPI bayan yunƙurin tura sauye-sauye zuwa ma'ajiyar OpenDPI, wanda ba a kula ba. An rubuta lambar nDPI a cikin C kuma tana da lasisi ƙarƙashin LGPLv3.

Tsarin yana ba ku damar ƙayyade ƙa'idodin matakin aikace-aikacen da aka yi amfani da su a cikin zirga-zirgar zirga-zirga, yin nazarin yanayin ayyukan cibiyar sadarwa ba tare da ɗaure su da tashar jiragen ruwa ba (zai iya tantance sanannun ka'idoji waɗanda masu sarrafa su ke karɓar haɗin kai akan tashoshin sadarwa marasa daidaituwa, misali. idan ba a aika http daga tashar jiragen ruwa 80 ba, ko kuma, akasin haka, lokacin da suke ƙoƙarin kama sauran ayyukan cibiyar sadarwa azaman http ta hanyar gudanar da shi akan tashar jiragen ruwa 80).

Bambance-bambance daga OpenDPI sun ta'allaka ne akan tallafi don ƙarin yarjejeniyoyi da jigilar su zuwa dandamali. Windows, inganta aiki, daidaitawa don amfani a cikin aikace-aikacen sa ido kan zirga-zirgar ababen hawa na ainihin lokaci (cire wasu takamaiman fasaloli waɗanda ke rage jinkirin injin), da kuma ikon ginawa azaman tsarin kernel Linux da kuma goyon bayan ma'anar ƙananan tsare-tsare.

Yana tallafawa gano nau'ikan barazanar hanyar sadarwa guda 53 (haɗarin kwarara) da kuma fiye da yarjejeniyoyi da aikace-aikace 350 (daga OpenVPN, Tor, QUIC, SOCKS, BitTorrent da IPsec zuwa Telegram, Viber, WhatsApp, PostgreSQL da buƙatun zuwa Gmail, Office 365, Google Docs da YouTube). Akwai na'urar fassara don sabar da abokin ciniki. Takaddun shaida na SSL, wanda ke ba ku damar gano yarjejeniya (misali, Citrix Online da Apple iCloud) ta amfani da takardar shaidar ɓoyewa. An samar da kayan aikin nDPIreader don nazarin abubuwan da ke cikin dumps na pcap ko zirga-zirgar hanyar sadarwa ta yanzu.

A cikin sabon saki:

  • An rage amfani da ƙwaƙwalwar ajiya ta umarni mai girma, godiya ga sake yin aikin aiwatar da lissafin.
  • Fadada Tallafin IPv6.
  • An ƙara sabbin masu gano ƙa'idar yarjejeniya masu alaƙa da abun ciki na manya, talla, nazarin yanar gizo da bin diddigi.
  • Ƙara goyon baya don ladabi da ayyuka:
    • HAProxy
    • Apache Thrift
    • RMCP (Ka'idar Kula da Kula da Nisa)
    • SLP (Ka'idar Wurin Sabis)
    • Bitcoin
    • HTTP/2 ba tare da boye-boye ba
    • SRTP (Amintaccen sufuri na lokaci-lokaci)
    • BACnet
    • OICQ (manzon dan kasar Sin)
  • An ƙara ganowa don OperaVPN da ProtonVPN. Ingantaccen ganowa. Wireguard.
  • Aiwatar da aikin heuristic don gano cikakken ɓoyayyun hanyoyin zirga-zirga.
  • Ƙara bayanin ayyukan Yandex da VK.
  • Ƙarin ganowa na Facebook reels da labaru.
  • Ƙarin ma'anar dandalin wasan kwaikwayo na Roblox, NVIDIA GeForceNow sabis na girgije, Wasannin Wasannin Epic, da wasan "Heroes of Storm".
  • Ingantattun gano zirga-zirga daga bots nema.
  • Ingantattun bincike da gano ka'idoji da ayyuka:
    • gnutella
    • H323
    • HTTP
    • Tafiya
    • Teamungiyoyin MS
    • Alibaba
    • MGCP
    • Sauna
    • MySQL
    • Zabbix
  • An faɗaɗa kewayon barazanar cibiyar sadarwa da aka gano da matsalolin da ke da alaƙa da haɗarin sasantawa (hadarin kwarara). Ƙara tallafi don sababbin nau'ikan barazanar: NDPI_MALWARE_HOST_CONTACTED da NDPI_TLS_ALPN_SNI_MISMATCH.
  • An shirya gwajin fuzzing don gano matsalolin aminci.
  • An warware matsalolin ginawa akan FreeBSD.

source: budenet.ru

Sayi amintaccen masauki don shafuka tare da kariyar DDoS, sabar VPS VDS 🔥 Sayi ingantaccen masaukin yanar gizo tare da kariyar DDoS, sabar VPS VDS | ProHoster