Open przemeksw opened 10 months ago
Maybe this could be archived by adding this information as the 5th argument value?
Hello!
I'm sorry but this capability is not available in community edition.
You can do it in Advanced one easily https://fastnetmon.com/docs-fnm-advanced/fastnetmon-advanced-json-notify-script-in-python/ https://fastnetmon.com/docs-fnm-advanced/fastnetmon-advanced-json-notify-script-in-python/?amp
Sincerely yours, Pavel Odintsov
On Wed, 31 Jan 2024 at 12:01, Denis Klimek @.***> wrote:
Maybe this could be archived by adding this information as the 5th argument value?
— Reply to this email directly, view it on GitHub https://github.com/pavel-odintsov/fastnetmon/issues/999#issuecomment-1918969177, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAU56ZQD2FBPQYQKP7PXUNTYRIW77AVCNFSM6AAAAABBSCTB4SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSMJYHE3DSMJXG4 . You are receiving this because you are subscribed to this thread.Message ID: @.***>
Can't you just add this functionality to the community version? This would make it easier to adjust the thresholds for individual configuration values. All you need is information about which setting caught a given attack - nothing more
I just marked it as feature request. Somebody from team or community may pick it up if they have spare cycles.
Cool thanks !!!
Is it possible to add information to an email message which rule worked for a given ddos block, including, for example, the configuration settings in brackets?
threshold_tcp_mbps = 90000 threshold_udp_mbps = 7500 threshold_icmp_mbps = 1000
threshold_tcp_pps = 58000 threshold_udp_pps = 20000 threshold_icmp_pps = 2000
Thanks