Skip to content

v1.2.8
Compare
Choose a tag to compare
@lisaens lisaens released this 29 Jan 16:50
· 341 commits to master since this release
v1.2.8
8745de6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

GRNOC NetSage Deidentfier 1.2.8 -- Jan 28 2021

Features:

  • Added 15-sensor-specific-changes.conf with multiplication by mirroring-sampling rate for a pacificwave sensor and changing of the sensor name for NEAAR flows using a certain ifindex.
  • Started saving ifindexes to ES (at least for now)
  • Added consideration of continents to possibly get a country_scope value when a country is missing.
  • Stopped saving old 'projects' array field to ES (use project_names)
  • Added example cron file to get member-org lists. Docker will automatically download them (and maxmind db's, etc) weekly.
  • Documentation updates
  • Misc. minor changes

Bugs

  • Fixed a typo that affected src org when dst was Multicast or missing an asn or org
  • Moved the es_doc_id calculation to after aggregation, so it would be saved to ES.

Changes

  • Removed explicit logstash dependency in the spec file
  • (Upgraded logstash to logstash.x86_64 version 7.10.2 outside of pipeline upgrade)
  • Added Sun Corridor sensors to regexes for sensor type and group.
Assets 2
Loading