diff options
Diffstat (limited to 'config24.01.yaml')
| -rw-r--r-- | config24.01.yaml | 10 |
1 files changed, 4 insertions, 6 deletions
diff --git a/config24.01.yaml b/config24.01.yaml index 784461b..47a7c42 100644 --- a/config24.01.yaml +++ b/config24.01.yaml @@ -7,11 +7,11 @@ common: active_scan: # max calls/s (rough estimate) = max workers * max_call_per_sec switch: on max_workers: 100 - max_calls_per_sec: 10 + max_calls_per_sec: 100 monitor: # monitor_file_path: /Users/joy/Downloads/vpn_thwarting_monitor.prom - monitor_file_path: /home/tsg/olap/galaxy/volumes/node-exporter/prom/vpn_plugin_knowledgebase_monitor.prom + monitor_file_path: /opt/vpn-finder-plugins/prom/vpn_plugin_knowledgebase_monitor.prom outdated_days: 100 # outdated after Inactive for days. outdated results will not be monitored as effective results timezone_hour_gap: 8 @@ -78,7 +78,7 @@ ivacyvpn: confidence: confirmed domain: object_type: domain - sql: SELECT DISTINCT dns_qname FROM {$db_name}.{$table_name} WHERE {$time_filter} AND dns_qname LIKE '%.pointtoserver.com' + sql: SELECT DISTINCT dns_qname FROM {$db_name}.{$table_name} WHERE {$time_filter} AND ((dns_qname LIKE '%.pointtoserver.com') or (dns_qname LIKE '%.ptoserver.com') or (dns_qname LIKE '%.dns2use.com')) ip: object_type: ip kb_sql: SELECT distinct domain FROM {$mariadb_dbname}.{$mariadb_domain_tablename} where vpn_service_name = 'ivacyvpn' @@ -128,9 +128,7 @@ turbovpn: plugin_name: turbovpn object_type: ip confidence: confirmed - security_table_name: security_event - security_policy_id: 3847 - sql: SELECT server_ip FROM {$db_name}.{$security_table_name} WHERE {$time_filter} AND has(security_rule_list, {$security_policy_id}) AND server_port IN (66, 109, 8080, 97, 94, 92, 21, 25) GROUP BY server_ip having length(groupUniqArray(server_port))>3 + sql: SELECT server_ip FROM {$db_name}.{$table_name} WHERE {$time_filter} AND server_port IN (66, 109, 8080, 97, 94, 92, 21, 25) GROUP BY server_ip having length(groupUniqArray(server_port))>3 geckovpn: |