Mashruuca ntop, kaas oo soo saara qalabka lagu qabto laguna falanqeeyo taraafikada, ayaa daabacay siideynta xirmada baarista qoto dheer ee nDPI 4.4, kaas oo sii wada horumarinta maktabadda OpenDPI. Mashruuca nDPI waxaa la aasaasay ka dib isku daygii lagu guul daraystay in lagu riixo isbeddelada kaydka OpenDPI, kaas oo aan la ilaalin. Koodhka nDPI waxa uu ku qoran yahay C waxana uu shati ku leeyahay LGPLv3.
Nidaamku wuxuu kuu oggolaanayaa inaad go'aamiso borotokoolka heerka codsiga ee loo isticmaalo taraafikada, iyadoo la falanqeynayo dabeecadda dhaqdhaqaaqa shabakada iyada oo aan lagu xirin dekedaha shabakada (waxay go'aamin kartaa borotokoollada si fiican loo yaqaan kuwaas oo maamulayaashu ay aqbalaan isku xirka dekedaha shabakadaha aan caadiga ahayn, tusaale ahaan, Haddii http aan laga soo dirin dekedda 80, ama, liddi ku ah, marka ay isku dayayaan in ay sawiraan hawlaha kale ee shabakada sida http iyaga oo ku shaqeeya dekedda 80).
Farqiga u dhexeeya OpenDPI waxaa ka mid ah taageerada borotokoolka dheeriga ah, u wareejinta madal Windows, hagaajinta waxqabadka, la qabsiga isticmaalka codsiyada la socodka taraafikada waqtiga-dhabta ah (qaar ka mid ah sifooyin gaar ah oo hoos u dhigay mishiinka ayaa laga saaray), awoodda wax lagu dhiso qaab Module kernel Linux, iyo taageerada qeexida borotokool hoosaadka.
Wadar ahaan, qeexitaannada ilaa 300 borotokoollada iyo codsiyada waa la taageeray, laga bilaabo OpenVPN, Tor, QUIC, SOCKS, BitTorrent iyo IPsec ilaa Telegram, Viber, WhatsApp, PostgreSQL iyo wicitaannada GMail, Office365, GoogleDocs iyo YouTube. Waxa jira server iyo macmiil SSL decoder kaas oo kuu ogolaanaya inaad go'aamiso borotokoolka (tusaale, Citrix Online iyo Apple iCloud) adoo isticmaalaya shahaadada sirta ah. Utility nDPIreader waxaa la bixiyaa si loo falanqeeyo waxa ku jira qashin-qubka pcap ama taraafikada hadda iyada oo loo marayo is-dhexgalka shabakadda.
Siideynta cusub:
- Xogta badan oo lagu daray xog ku saabsan sababta loogu yeedhay maamulaha hanjabaad gaar ah.
- Waxaa lagu daray shaqada ndpi_check_flow_risk_exceptions() ee isku xirka maamulayaasha khatarta shabakada.
- Qayb ayaa laga dhigay hab-maamuuska shabakada (tusaale, TLS) iyo borotokoolka codsiga (tusaale, adeegyada Google).
- Waxaa lagu daray laba heerar gaar ah oo cusub: NDPI_CONFIDENCE_DPI_PARTIAL iyo NDPI_CONFIDENCE_DPI_PARTIAL_CACHE.
- Qaab-dhismeedka lagu daray si loo qeexo isticmaalka adeegga WARP ee Cloudflare
- Hirgelinta hashmaabka gudaha waxa lagu bedelay uthash.
- La cusboonaysiiyay xirmooyinka luqadda Python.
- Sida caadiga ah, hirgelinta gcrypt ee ku dhex jirta waa la dajiyay (--with-libgcrypt doorashada waxaa la bixiyaa si loo isticmaalo hirgelinta nidaamka).
- Kala duwanaanshaha khataraha shabakadda ee la aqoonsaday iyo dhibaatooyinka la xidhiidha khatarta isu-tanaasulka (khatarta socodka) waa la ballaariyay. Taageero lagu daray noocyada khatarta cusub: NDPI_PUNYCODE_IDN, NDPI_ERROR_CODE_DETECTED, NDPI_HTTP_CRAWLER_BOT iyo NDPI_ANONYMOUS_SUBSCRIBER.
- Taageerada lagu daray borotokoolka iyo adeegyada:
- UltraSurf
- i3D
- Ciyaaraha Riot
- tsan
- TunnelBear VPN
- ururiyey
- PIM (Protocol Independent Multicast)
- Dhaqan-celinta Guud ee Pragmatic (PGM)
- HSR
- Alaabooyinka GoTo sida GoToMeeting
- Dazn
- MPEG-DASH
- Agora Software Defined Network-waqtiga dhabta ah (SD-RTN)
- Afka taabo
- VXLAN
- DMNS/LLMNR
- Qiimaynta iyo ogaanshaha borotokoolka oo la hagaajiyay:
- SMTP/SMTPS (STARTTLS taageero lagu daray)
- OCSP
- TargusDataspeed
- Usenet
- DTLS
- TFTP
- SOAP iyada oo loo marayo HTTP
- Saamaynta Genshin
- IPSec/ISAKMP
- DNS
- syslog
- DHCP
- NATS
- Viber
- Xiaomi
- Raknet
- gnutella
- Kerberos
- QUIC (kaalmo lagu daray v2drft 01 tifaftirka)
- SSDP
- SNMP
- DGA
- AES-NI
Source: opennet.ru