In our latest release, we’ve made significant enhancements to improve efficiency and user control. We’ve enabled netflow_ipfix_inline and netflow_v9_lite support by default, and added the option for custom password setting via the installer flag reset_visual_passwords. We’ve also implemented complete logic for BGP Flow Spec redirect action and improved its rate and discard encoding. Additionally, we’ve introduced logic to calculate TCP, UDP, ICMP, and other flows per second for each host individually, and migrated flow tracking structure to std::unordered_map for faster performance. See the full list of changes below!
Changes:
- Added logic to create stub config file for gobgp from installer
- Enabled netflow_ipfix_inline by default and removed configuration option
- Enabled netflow_v9_lite support by default and removed configuration option netflow_v9_lite
- Exposed average_calculation_time as system_counter as we want to see it all the time
- Added option for installer flag reset_visual_passwords to set custom password passed via password flag
- Implemented complete logic for BGP Flow Spec redirect action
- Improved BGP Flow spec rate and discard encoding
- Added redirect_as and redirect_value to action section
- Added redirect and mark actions for flow spec logic
- Added 4 byte encoding of sampler id in Netflow v9 used by Huawei
- Reworked flow tracking table cleanup logic
- Reworked global flow counters and introduced counter for flow calculation logic duration
- Extracted flow calculation speed logic to separate function
- Introduced logic to calculate tcp, udp, icmp and other flows per second for each host individually
- Migrated flow tracking structure from std::map to std::unordered_map because it’s 2-10 times faster.
- Extracted flow callback to be standard function
- Made internal tracking variables for flow tracking logic external to reduce lambda complexity
- Removed checks if connection tracking is enabled from lambda as we do checks outside