Using nDPI over DPDK to Classify and Block Unwanted Network Traffic - Luca Deri, ntop

preview_player
Показать описание
Using nDPI over DPDK to Classify and Block Unwanted Network Traffic - Luca Deri, ntop
Speakers: Luca Deri
nDPI is an open source library that used DPI (deep packet inspection) techniques to classify network traffic. It can be used in monitoring tools to characterise network traffic, or inline to enforce network traffic policies. nDPI currently supports over 250 protocols including skype, bit torrent, and tor, and it is part of many open source applications and Linux distributions. This talk will cover the design of nDPI, and it explains how to use it on top of DPDK to efficiently monitor and block selected communication flows. Various real case examples are demonstrated ranging from parental control enforcement to IoT devices protection.
  1. DPDK Project
Рекомендации по теме
Using nDPI over 0:30:46

Using nDPI over DPDK to Classify and Block Unwanted Network Traffic - Luca Deri, ntop

Migrating from a 0:19:30

Migrating from a commercial DPI library to nDPI - ntopConf23 - Ivan Nardi

SF20V - 04 0:42:30

SF20V - 04 Improving packet capture in the DPDK (Stephen Hemminger)

nDPI encrypted traffic 0:14:03

nDPI encrypted traffic analysis

The Future of 1:34:34

The Future of nDPI: an Open Discussion

Using nDPI for 0:20:07

Using nDPI for Monitoring and Security: FOSDEM 2021

Deep Packet Inspection 0:01:13

Deep Packet Inspection Using Intel DPDK

Packet Capture, Flow 1:19:38

Packet Capture, Flow Collection, DPI, Flow Analysis - ntopConf23 Training - Luca Deri

DPI Performance Enhancement 0:00:47

DPI Performance Enhancement using Hyperscan and DPDK

HW Offloaded Regex/DPI 0:19:06

HW Offloaded Regex/DPI Appliance - Shahaf Shuler, Mellanox

ndpi installation03 0:05:27

ndpi installation03

ndpi installation02 0:03:43

ndpi installation02

ndpi installation04 0:01:28

ndpi installation04

Multiple vDPI Functions 0:19:23

Multiple vDPI Functions using DPDK and Hyperscan on OVS-DPDK Platform

Kernel-bypass techniques for 0:29:05

Kernel-bypass techniques for high-speed network packet processing

Ntop DPI 0:00:43

Ntop DPI

Flow Classification Optimizations 0:43:04

Flow Classification Optimizations in DPDK

Flow-based Packet Processing 0:31:25

Flow-based Packet Processing Framework on DPDK and VPP - Hongjun Ni, Intel

Arm’s Efforts for 0:18:28

Arm’s Efforts for DPDK and Optimization Plan - Gavin Hu & Honnappa Nagarahalli, Arm

Experience with DPDK 0:48:35

Experience with DPDK Troubleshooting

ndpi installation01 0:04:52

ndpi installation01

The Design and 0:19:53

The Design and Implementation of a New User-level DPDK TCP Stack in Rust - Lilith Stephenson

More Flexible, Scalable, 0:21:49

More Flexible, Scalable, and Applicable NFV Use Cases: Refactor of DPDK Packet Framework/IP Pipeline

DPDK and PCIe 0:35:00

DPDK and PCIe Gen4 Benchmarking - Amir Ancel, Mellanox & Keesang Song, AMD

Комментарии
Автор

at 12:50 there is a mention of protocols misbehaving. What is the misbehaving here?
Also after passing through firewalls they become something else. What is that?

utkarshkathuria