Code Review / clover.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: c43c773) | patch
Develop snort IDS and content inspect service 25/54225/4
authorEddie Arrage <eddie.arrage@huawei.com>
Tue, 20 Mar 2018 23:51:35 +0000 (23:51 +0000)
committerEddie Arrage <eddie.arrage@huawei.com>
Sat, 31 Mar 2018 00:11:00 +0000 (00:11 +0000)
commit56f50acd66d6f041b0347babb131150db3ca2023
tree4a631df908d55fa7cd2fbf59c5854d06d811bf64tree | snapshot
parentc43c773fc33167f46461b4fd1ae58e40d390d59ecommit | diff
Develop snort IDS and content inspect service

- Initial commit to show potential structure of a sample service
- This wil be part of a larger sample application currently dubbed
Service Delivery Controller
- Docker container needs to be built and employs open-source Linux packages
- Service is deployable in Istio service mesh using provided yaml
- Control snort daemon and add custom rules with GRPC messaging
- Process snort alerts actively and send to redis and upstream service
mesh components
- Integrates a web server for better HTTP signature detection

- Improved build script for CI with variables
- Render k8s yaml snort manifest dynamically with command
line options
- Improve snort_client sample script for runtime modifications
including passing args on CLI, error checking
- Update nginx proxy interface
- Added logging to snort server and alert process

Change-Id: Ic56f9fcd9ed21f64b84b85ac8ee280d69af7b7c9
Signed-off-by: Eddie Arrage <eddie.arrage@huawei.com>
17 files changed:
samples/scenarios/service_delivery_controller.yaml [new file with mode: 0644] blob
samples/services/snort_ids/docker/Dockerfile [new file with mode: 0644] blob
samples/services/snort_ids/docker/build.sh [new file with mode: 0755] blob
samples/services/snort_ids/docker/grpc/build_proto.sh [new file with mode: 0755] blob
samples/services/snort_ids/docker/grpc/nginx_pb2.py [new file with mode: 0644] blob
samples/services/snort_ids/docker/grpc/nginx_pb2_grpc.py [new file with mode: 0644] blob
samples/services/snort_ids/docker/grpc/snort.proto [new file with mode: 0644] blob
samples/services/snort_ids/docker/grpc/snort_alerts.py [new file with mode: 0644] blob
samples/services/snort_ids/docker/grpc/snort_client.py [new file with mode: 0644] blob
samples/services/snort_ids/docker/grpc/snort_pb2.py [new file with mode: 0644] blob
samples/services/snort_ids/docker/grpc/snort_pb2_grpc.py [new file with mode: 0644] blob
samples/services/snort_ids/docker/grpc/snort_server.py [new file with mode: 0644] blob
samples/services/snort_ids/docker/process/alert_process.sh [new file with mode: 0755] blob
samples/services/snort_ids/docker/process/grpc_process.sh [new file with mode: 0755] blob
samples/services/snort_ids/docker/process/start_process.sh [new file with mode: 0755] blob
samples/services/snort_ids/yaml/manifest.template [new file with mode: 0644] blob
samples/services/snort_ids/yaml/render_yaml.py [new file with mode: 0644] blob