Skip to content
#

network-traffic

Here are 31 public repositories matching this topic...

ethack
ethack commented Dec 20, 2019

Besides incoming blacklisted connections, external to internal traffic isn't super useful in any of our analysis modules. And incoming blacklisted connections is of questionable usefulness as well since the things that normally scan everything on the internet will also normally end up on blacklists. We're not trying to detect someone attacking coming in. We're trying to detect already compromised

cglewis
cglewis commented Oct 30, 2019
  • what is the name of the switch for mirroring (name defined in the faucet.yaml, not dns, for example)
  • the port that Poseidon uses for mirroring needs to be controlled by Faucet, therefore it needs to be an openflow port
  • the port that Poseidon uses needs to be configured in faucet.yaml to be output_only: true and no native vlan (a port for mirroring from Faucet's perspective)
  • Requiremen

Improve this page

Add a description, image, and links to the network-traffic topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the network-traffic topic, visit your repo's landing page and select "manage topics."

Learn more

You can’t perform that action at this time.