DenisKlimek
commented
9 months ago Maybe this could be archived by adding this information as the 5th argument value?
Open przemeksw opened 9 months ago
DenisKlimek
commented
9 months ago Maybe this could be archived by adding this information as the 5th argument value?
pavel-odintsov
commented
9 months ago Hello!
I'm sorry but this capability is not available in community edition.
You can do it in Advanced one easily https://fastnetmon.com/docs-fnm-advanced/fastnetmon-advanced-json-notify-script-in-python/ https://fastnetmon.com/docs-fnm-advanced/fastnetmon-advanced-json-notify-script-in-python/?amp
Sincerely yours, Pavel Odintsov
On Wed, 31 Jan 2024 at 12:01, Denis Klimek @.***> wrote:
Maybe this could be archived by adding this information as the 5th argument value?
— Reply to this email directly, view it on GitHub https://github.com/pavel-odintsov/fastnetmon/issues/999#issuecomment-1918969177, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAU56ZQD2FBPQYQKP7PXUNTYRIW77AVCNFSM6AAAAABBSCTB4SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSMJYHE3DSMJXG4 . You are receiving this because you are subscribed to this thread.Message ID: @.***>
przemeksw
commented
9 months ago Can't you just add this functionality to the community version? This would make it easier to adjust the thresholds for individual configuration values. All you need is information about which setting caught a given attack - nothing more
pavel-odintsov
commented
9 months ago I just marked it as feature request. Somebody from team or community may pick it up if they have spare cycles.
przemeksw
commented
9 months ago Cool thanks !!!
Is it possible to add information to an email message which rule worked for a given ddos block, including, for example, the configuration settings in brackets?
threshold_tcp_mbps = 90000 threshold_udp_mbps = 7500 threshold_icmp_mbps = 1000
threshold_tcp_pps = 58000 threshold_udp_pps = 20000 threshold_icmp_pps = 2000
Thanks