FastNetMon’s latest release brings several product enhancements to improve your DDoS detection and mitigation. We’ve added TLS support for FastNetMon Flow TLS agent and server, reworked capnp serialization logic, and improved debug logging for IPFIX. We’ve also enabled netflow_sampling_cache for Netflow v9 and IPFIX by default to avoid traffic gaps after tool restart. For a full list of updates, see below.
Changes
- Added TLS support for FastNetMon Flow TLS agent
- Reworked capnp serialization logic
- Added logic to change password in Grafana data source provision file for Clickhouse
- Extracted Clickhouse provision logic to separate file
- Switched default ban time from 1900 to 675 per_host and 771 for total hostgroups
- Added TLS support for FastNetMon Flow server
- Enabled netflow_sampling_cache for Netflow v9 and IPFIX by default. It helps to avoid traffic gaps after tool restart
- Less verbose Clickhouse
- Reworked sampling decoder logic for Netflow v9
- Improved debug logging for IPFIX