EVOLUTION-MANAGER

Edit File: ghost_networks.lua

-- -- (C) 2019-20 - ntop.org -- local alerts_api = require("alerts_api") local alert_consts = require("alert_consts") local user_scripts = require("user_scripts") local script -- ################################################################# local function check_ghost_networks(params) for domain, domain_info in pairs(params.entity_info.bcast_domains or {}) do if(domain_info.ghost_network) then local key = params.user_script.key .. "__" .. domain local delta_hits = alerts_api.interface_delta_val(key, params.granularity, domain_info.hits) local ghost_network_type = alerts_api.ghostNetworkType(domain, params.granularity) if(delta_hits > 0) then alerts_api.trigger(params.alert_entity, ghost_network_type, nil, params.cur_alerts) else alerts_api.release(params.alert_entity, ghost_network_type, nil, params.cur_alerts) end end end end -- ################################################################# script = { -- Script category category = user_scripts.script_categories.security, default_enabled = true, -- This script is only for alerts generation is_alert = true, hooks = { min = check_ghost_networks, }, gui = { i18n_title = "alerts_dashboard.ghost_networks", i18n_description = "alerts_dashboard.ghost_networks_description", }, } -- ################################################################# return script