Pulogalamu ya ProHoster > Blog > nkhani zapaintaneti > Kutulutsidwa kwa nDPI 4.8 packet inspection system

Kutulutsidwa kwa nDPI 4.8 packet inspection system

Pulojekiti ya ntop, yomwe imapanga zida zogwiritsira ntchito ndi kusanthula magalimoto, yafalitsa kutulutsidwa kwa nDPI 4.8 deep packet inspection toolkit, yomwe ikupitiriza kupanga laibulale ya OpenDPI. Pulojekiti ya nDPI idakhazikitsidwa pambuyo poyesa kosatheka kukankhira zosintha kumalo osungirako OpenDPI, omwe adasiyidwa osasungidwa. Khodi ya nDPI imalembedwa mu C ndipo ili ndi chilolezo pansi pa LGPLv3.

Dongosololi limakupatsani mwayi wodziwa ma protocol omwe amagwiritsidwa ntchito pamagalimoto, kusanthula momwe zimakhalira pamaneti popanda kulumikizidwa ndi ma netiweki madoko (amatha kudziwa ma protocol odziwika bwino omwe othandizira amavomereza kulumikizidwa pamadoko osagwirizana ndi netiweki, mwachitsanzo, ngati http sanatumizidwe kuchokera ku doko 80, kapena, mosiyana, pamene akuyesera kubisa ntchito zina za intaneti monga http poyendetsa pa doko 80).

Kusiyanitsa kwa OpenDPI kumaphatikizapo kuthandizira ma protocol owonjezera, kuyika pa nsanja ya Windows, kukhathamiritsa kwa magwiridwe antchito, kusinthira kuti mugwiritse ntchito poyang'anira magalimoto munthawi yeniyeni (zinthu zina zomwe zidachedwetsa injini zidachotsedwa), kuthekera kopanga mwa mawonekedwe a Linux kernel module, ndi chithandizo chofotokozera ma subprotocols.

Imathandizira kuzindikira mitundu 53 yakuwopseza pa intaneti (chiwopsezo chakuyenda) ndi ma protocol ndi mapulogalamu opitilira 350 (kuchokera ku OpenVPN, Tor, QUIC, SOCKS, BitTorrent ndi IPsec kupita ku Telegraph, Viber, WhatsApp, PostgreSQL ndikuyitanitsa ku Gmail, Office 365, Google Docs. ndi YouTube). Pali seva ndi kasitomala SSL decoder satifiketi yomwe imakupatsani mwayi wodziwa protocol (mwachitsanzo, Citrix Online ndi Apple iCloud) pogwiritsa ntchito satifiketi yobisa. Ntchito ya nDPIreader imaperekedwa kuti ifufuze zomwe zili mu pcap dumps kapena kuchuluka kwa magalimoto omwe alipo kudzera pa intaneti.

M'kutulutsa kwatsopano:

  • Kugwiritsa ntchito kukumbukira kwachepetsedwa ndi malamulo a ukulu, chifukwa cha kukonzanso kwa kukhazikitsa mndandanda.
  • Thandizo la IPv6 lawonjezedwa.
  • Onjezani zozindikiritsa zatsopano zamaprotocol zokhudzana ndi zomwe zili zazikulu, kutsatsa, kusanthula pa intaneti komanso kutsatira.
  • Zowonjezera zothandizira ma protocol ndi ntchito:
    • Hapo
    • Apache Thrift
    • RMCP (Remote Management Control Protocol)
    • SLP (Service Location Protocol)
    • Bitcoin
    • HTTP/2 popanda kubisa
    • SRTP (Secure Real-time Transport)
    • BACnet
    • OICQ (mthenga waku China)
  • Tanthauzo lowonjezera la OperaVPN ndi ProtonVPN. Kuzindikira bwino kwa Wireguard.
  • Ma heuristics adakhazikitsidwa kuti azindikire mayendedwe obisika.
  • Tanthauzo lowonjezera la ntchito za Yandex ndi VK.
  • Kuzindikira kowonjezera kwa ma reel a Facebook ndi nkhani.
  • Tanthauzo lowonjezera la nsanja yamasewera a Roblox, ntchito yamtambo ya NVIDIA GeForceNow, masewera a Epic Games, ndi masewera a "Heroes of the Storm".
  • Kuzindikirika bwino kwa kuchuluka kwa magalimoto kuchokera pakusaka ma bots.
  • Kuwongolera bwino ndikuzindikiritsa ma protocol ndi ntchito:
    • mchere
    • H323
    • HTTP
    • Cheza
    • Masewera a MS
    • Alibaba
    • MGCP
    • nthunzi
    • MySQL
    • Zabbix
  • Kuchuluka kwa ziwopsezo zapaintaneti zomwe zazindikirika ndi mavuto okhudzana ndi chiopsezo cha kusokoneza (chiwopsezo choyenda) chakulitsidwa. Zowonjezera zothandizira pamitundu yatsopano yowopseza: NDPI_MALWARE_HOST_CONTACTED ndi NDPI_TLS_ALPN_SNI_MISMATCH.
  • Kuyesa kwa fuzzing kudapangidwa kuti azindikire zovuta zodalirika.
  • Mavuto omanga pa FreeBSD adathetsedwa.

Source: opennet.ru

Kuwonjezera ndemanga