Pulogalamu ya ProHoster > Blog > nkhani zapaintaneti > Kutulutsidwa kwa nDPI 4.4 packet inspection system

Kutulutsidwa kwa nDPI 4.4 packet inspection system

Pulojekiti ya ntop, yomwe imapanga zida zogwiritsira ntchito ndi kusanthula magalimoto, yafalitsa kutulutsidwa kwa nDPI 4.4 deep packet inspection toolkit, yomwe ikupitiriza kupanga laibulale ya OpenDPI. Pulojekiti ya nDPI idakhazikitsidwa pambuyo poyesa kosatheka kukankhira zosintha kumalo osungirako OpenDPI, omwe adasiyidwa osasungidwa. Khodi ya nDPI imalembedwa mu C ndipo ili ndi chilolezo pansi pa LGPLv3.

Dongosololi limakupatsani mwayi wodziwa ma protocol omwe amagwiritsidwa ntchito pamagalimoto, kusanthula momwe zimakhalira pamaneti popanda kulumikizidwa ndi ma netiweki madoko (amatha kudziwa ma protocol odziwika bwino omwe othandizira amavomereza kulumikizidwa pamadoko osagwirizana ndi netiweki, mwachitsanzo, ngati http sanatumizidwe kuchokera ku doko 80, kapena, mosiyana, pamene akuyesera kubisa ntchito zina za intaneti monga http poyendetsa pa doko 80).

Kusiyanitsa kwa OpenDPI kumaphatikizapo kuthandizira ma protocol owonjezera, kuyika pa nsanja ya Windows, kukhathamiritsa kwa magwiridwe antchito, kusinthira kuti mugwiritse ntchito poyang'anira magalimoto munthawi yeniyeni (zinthu zina zomwe zidachedwetsa injini zidachotsedwa), kuthekera kopanga mwa mawonekedwe a Linux kernel module, ndi chithandizo chofotokozera ma subprotocols.

Ponseponse, matanthauzidwe a ma protocol ndi mapulogalamu pafupifupi 300 amathandizidwa, kuchokera ku OpenVPN, Tor, QUIC, SOCKS, BitTorrent ndi IPsec kupita ku Telegraph, Viber, WhatsApp, PostgreSQL ndikuyitanitsa ku GMail, Office365, GoogleDocs ndi YouTube. Pali seva ndi kasitomala SSL decoder satifiketi yomwe imakupatsani mwayi wodziwa protocol (mwachitsanzo, Citrix Online ndi Apple iCloud) pogwiritsa ntchito satifiketi yobisa. Ntchito ya nDPIreader imaperekedwa kuti ifufuze zomwe zili mu pcap dumps kapena kuchuluka kwa magalimoto omwe alipo kudzera pa intaneti.

M'kutulutsa kwatsopano:

  • Metadata yowonjezedwa yokhala ndi chidziwitso chokhudza chifukwa choyimbira chothandizira kuti chiwopsezo china.
  • Onjezani ndpi_check_flow_risk_exceptions() ntchito yolumikizira zowopseza maukonde.
  • Magawo apangidwa kukhala ma protocol a netiweki (mwachitsanzo, TLS) ndi ma protocol (mwachitsanzo, ntchito za Google).
  • Awonjeza magawo awiri achinsinsi: NDPI_CONFIDENCE_DPI_PARTIAL ndi NDPI_CONFIDENCE_DPI_PARTIAL_CACHE.
  • Template yowonjezeredwa kutanthauzira kugwiritsa ntchito Cloudflare WARP service
  • Kukhazikitsa kwamkati mwa hashmap kwasinthidwa ndi uthash.
  • Zomangira za chilankhulo cha Python zosinthidwa.
  • Mwachikhazikitso, kukhazikitsa kwa gcrypt kumayatsidwa (njira ya --with-libgcrypt imaperekedwa kuti mugwiritse ntchito dongosolo).
  • Kuchuluka kwa ziwopsezo zapaintaneti zomwe zazindikirika ndi mavuto okhudzana ndi chiopsezo cha kusokoneza (chiwopsezo choyenda) chakulitsidwa. Thandizo lowonjezera la mitundu yatsopano yowopseza: NDPI_PUNYCODE_IDN, NDPI_ERROR_CODE_DETECTED, NDPI_HTTP_CRAWLER_BOT ndi NDPI_ANONYMOUS_SUBSCRIBER.
  • Zowonjezera zothandizira ma protocol ndi ntchito:
    • Kuthamanga
    • ndi 3d
    • Masewera a Riot
    • tsan
    • Zamakono Zidzakhala VPN
    • zosonkhanitsidwa
    • PIM (Protocol Independent Multicast)
    • Pragmatic General Multicast (PGM)
    • RSH
    • Zida za GoTo monga GoToMeeting
    • Dazn
    • MPEG-DASH
    • Agora Software Defined Real-time Network (SD-RTN)
    • Toca Boca
    • Chithunzi cha VXLAN
    • DMNS/LLMNR
  • Kuwongolera ndi kuzindikira kwa protocol:
    • SMTP/SMTPS (thandizo la STARTTLS lawonjezeredwa)
    • OCSP
    • TargusDataspeed
    • Usenet
    • Zamgululi
    • TFTP
    • SOAP kudzera pa HTTP
    • Genshin Impact
    • IPSec/ISAKMP
    • DNS
    • syslog
    • DHCP
    • Zotsatira za NATS
    • Viber
    • Xiaomi
    • Raknet
    • mchere
    • Kerberos
    • QUIC (thandizo lowonjezera la v2drft 01)
    • SSDP
    • SNMP
    • ADI
    • AES-NI

Source: opennet.ru

Kuwonjezera ndemanga