Project

General

Profile

Feature #336

Add support for NETMAP to Suricata.

Added by Nikolay Denev almost 8 years ago. Updated over 4 years ago.

Status:
Closed
Priority:
Normal
Target version:
Effort:
Difficulty:
Label:

Description

Netmap as described here : [[http://info.iet.unipi.it/~luigi/netmap/]] is a FreeBSD (currently experimental)
feature allowing high speed access to network interfaces. Suricata can benefit greatly from this.
Netmap has a wrapper library that can be used with libpcap clients (which seem not to work with suricata at the moment),
but a proper native support for netmap should be better.

History

#1

Updated by Victor Julien almost 8 years ago

  • Status changed from New to Assigned
  • Assignee set to Eric Leblond
  • Priority changed from Normal to Low

Low priority as long as it's experimental in FreeBSD, but definitely something we want to support.

#2

Updated by Nikolay Denev over 7 years ago

NETMAP was currently being imported in the FreeBSD -STABLE branches, and a few days ago a experimental Linux port was announced.
The files are at the URL in my previous post.
This looks very interesting for IDS and especially for IPS mode with the ability to do true zero-copy forwarding.

#3

Updated by Victor Julien about 7 years ago

  • Target version set to TBD
#4

Updated by Victor Julien almost 7 years ago

  • Target version changed from TBD to 2.0rc2
#5

Updated by Victor Julien almost 7 years ago

  • Assignee changed from Eric Leblond to Victor Julien
#6

Updated by Victor Julien over 6 years ago

  • Target version changed from 2.0rc2 to TBD
#7

Updated by Victor Julien over 6 years ago

  • Assignee changed from Victor Julien to Tom DeCanio
#8

Updated by Victor Julien almost 6 years ago

  • Target version changed from TBD to 2.0beta2
  • % Done changed from 0 to 50
#9

Updated by Victor Julien almost 6 years ago

  • Target version changed from 2.0beta2 to 2.0rc1
#10

Updated by Victor Julien over 5 years ago

  • Target version changed from 2.0rc1 to TBD

I'll merge this once it's ready. As it should be non-intrusive, it can be in a minor release as well.

#11

Updated by Aleksey Katargin almost 5 years ago

What is the current state of this issue?
Why https://github.com/decanio/suricata-np/tree/dev-netmap-v2.8 was not merged? Is it not finished? Maybe it has problems that can't be solved?

#12

Updated by Chad Smith over 4 years ago

I am also interested in the current status of this feature. Thanks for everything you do Victor!

#13

Updated by Victor Julien over 4 years ago

There is a new attempt to be found here https://github.com/inliniac/suricata/pull/1261

#14

Updated by Victor Julien over 4 years ago

  • Assignee changed from Tom DeCanio to Aleksey Katargin
  • Priority changed from Low to Normal
  • Target version changed from TBD to 2.1beta4

Aleksey has taken over, we're quite close: https://github.com/inliniac/suricata/pull/1318

#15

Updated by Victor Julien over 4 years ago

  • Status changed from Assigned to Closed
  • % Done changed from 50 to 100

Also available in: Atom PDF