Página Principal Explorar Ajuda
Iniciar Sessão
rajven
/
Eye
mirror de https://github.com/rajven/Eye
1
0
Fork 0
Ficheiros Problemas 0 Wiki
Ver Fonte

add page for search all traffic for specified ip

rajven há 4 anos atrás
pai
5404efd026
commit
768e129f73
4 ficheiros alterados com 139 adições e 3 exclusões
Visão Dividida Mostrar Estatísticas Diff
  1. 5 2
      html/admin/devices/snmpwalk.php
  2. 123 0
      html/admin/logs/detaillog.php
  3. 1 1
      html/admin/reports/userdaydetaillog.php
  4. 10 0
      html/inc/common.php

+ 5 - 2
html/admin/devices/snmpwalk.php
Ver Ficheiro 

@@ -24,8 +24,11 @@ if (empty($v_clean)) { continue; }
 
 print "$v_data<br>";
 
 }
 
 print "<table  class=\"data\" cellspacing=\"1\" cellpadding=\"4\">\n";
 
-print "<tr><td><b>Snmp interfaces</b></td></tr>\n";
 
-foreach ($interfaces as $key => $int) { print "<tr><td class=\"data\">$key => $int</td></tr>"; }
 
+print "<tr><td><b>Interface index</b></td><td><b>Interface name</b></td></tr>\n";
 
+foreach ($interfaces as $key => $int) { 
+list ($v_type,$v_data)=explode(':',$int);
 
+print "<tr><td class=\"data\">$key</td><td class=\"data\"> $v_data</td></tr>"; 
+}
 
 print "</table>\n";
 
 ?>
 
 </div>

+ 123 - 0
html/admin/logs/detaillog.php
Ver Ficheiro 

@@ -0,0 +1,123 @@
 
+<?php
 
+require_once ($_SERVER['DOCUMENT_ROOT']."/inc/auth.php");
 
+require_once ($_SERVER['DOCUMENT_ROOT']."/inc/languages/" . $language . ".php");
 
+require_once ($_SERVER['DOCUMENT_ROOT']."/inc/header.php");
 
+$default_date_shift='h';
 
+require_once ($_SERVER['DOCUMENT_ROOT']."/inc/datetimefilter.php");
 
+require_once ($_SERVER['DOCUMENT_ROOT']."/inc/gatefilter.php");
 
+$default_sort='id';
 
+$sort_table = 'A';
 
+require_once ($_SERVER['DOCUMENT_ROOT']."/inc/sortfilter.php");
 
+
 
+if (isset($_POST['ip'])) { $f_ip = $_POST['ip']; }
 
+if (isset($_GET['ip'])) { $f_ip = $_GET['ip']; }
 
+if (!isset($f_ip) and isset($_SESSION[$page_url]['ip'])) { $f_ip=$_SESSION[$page_url]['ip']; }
 
+if (empty($f_ip)) { $f_ip = '127.0.0.1'; }
 
+
 
+$_SESSION[$page_url]['ip']=$f_ip;
 
+
 
+$ip_where = '';
 
+
 
+if (!empty($f_ip)) {
 
+    if (checkValidIp($f_ip)) {
 
+        $ip_where = " (src_ip=inet_aton('" . $f_ip . "') or dst_ip=inet_aton('" . $f_ip . "')) AND "; 
+        }
 
+    }
 
+
 
+$rdns = 0;
 
+if (isset($_POST['dns'])) { $rdns=$_POST['dns']*1; }
 
+$_SESSION[$page_url]['dns']=$rdns;
 
+$dns_checked='';
 
+if ($rdns) { $dns_checked='checked="checked"'; }
 
+
 
+$dns_cache=NULL;
 
+
 
+print_log_submenu($page_url);
 
+/* print_trafdetail_submenu($page_url,"id=$id&date_start=$date1&date_stop=$date2","<b>Детализация для <a href=/admin/users/editauth.php?id=$id>$fip</a></b> ::&nbsp"); */
 
+?>
 
+
 
+<div id="cont">
 
+
 
+<form action="<?php print $page_url; ?>" method="post">
 
+<input type="hidden" name="id" value=<? echo $id; ?>>
 
+ip:&nbsp<input type="text" name="ip" value="<?php echo $f_ip; ?>" pattern="^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])$"
 
+Начало:&nbsp<input type="datetime-local" name="date_start" value="<?php echo $date1; ?>" />
 
+Конец:&nbsp<input type="datetime-local" name="date_stop" value="<?php echo $date2; ?>" />
 
+Шлюз:&nbsp <?php print_gateway_select($db_link, 'gateway', $rgateway); ?>
 
+DNS:&nbsp <input type=checkbox name=dns value="1" <?php print $dns_checked; ?>>
 
+Отображать:<?php print_row_at_pages('rows',$displayed); ?>
 
+<input type="submit" value="OK">
 
+</form>
 
+
 
+<b>Полный лог</b>
 
+
 
+<?php
 
+$sort_url = "<a href='detaillog.php?date_start=\"".$date1.'"&date_stop="'.$date2.'"';
 
+if (!empty($f_ip)) { $sort_url .='&f_ip="'.$f_ip.'"'; }
 
+
 
+$gateway_filter='';
 
+if (!empty($rgateway) and $rgateway>0) { $gateway_filter="(router_id=$rgateway) AND"; }
 
+
 
+$countSQL="SELECT Count(*) FROM Traffic_detail as A WHERE $gateway_filter $ip_where `timestamp`>='$date1' AND `timestamp`<'$date2'";
 
+$res = mysqli_query($db_link, $countSQL);
 
+$count_records = mysqli_fetch_array($res);
 
+$total=ceil($count_records[0]/$displayed);
 
+if ($page>$total) { $page=$total; }
 
+if ($page<1) { $page=1; }
 
+$start = ($page * $displayed) - $displayed;
 
+print_navigation($page_url,$page,$displayed,$count_records[0],$total);
 
+$gateway_list = get_gateways($db_link);
 
+?>
 
+
 
+<br>
 
+<table class="data">
 
+<tr align="center">
 
+<td class="data" width=20><b><?php $url = $sort_url.'&sort=id&order='.$new_order."'>id</a>"; print $url; ?></b></td>
 
+<td class="data" width=20><b>Юзер</b></td>
 
+<td class="data" width=150><b><?php $url = $sort_url.'&sort=timestamp&order='.$new_order."'>Дата</a>"; print $url; ?></b></td>
 
+<td class="data" width=30><b>Роутер</b></td>
 
+<td class="data" width=30><b>Протокол</b></td>
 
+<td class="data" width=150><b><?php $url = $sort_url.'&sort=src_ip&order='.$new_order."'>Откуда</a>"; print $url; ?></b></td>
 
+<td class="data"><b>DNS</b></td>
 
+<td class="data" width=50><b>Порт</b></td>
 
+<td class="data" width=150><b><?php $url = $sort_url.'&sort=dst_ip&order='.$new_order."'>Куда</a>"; print $url; ?></b></td>
 
+<td class="data"><b>DNS</b></td>
 
+<td class="data" width=50><b>Порт</b></td>
 
+<td class="data" width=80><b><?php $url = $sort_url.'&sort=bytes&order='.$new_order."'>Байт</a>"; print $url; ?></b></td>
 
+<td class="data" width=80><b><?php $url = $sort_url.'&sort=pkt&order='.$new_order."'>Pkt</a>"; print $url; ?></b></td>
 
+</tr>
 
+<?php
 
+$fsql = "SELECT A.id, A.auth_id, A.`timestamp`, A.router_id, A.proto, A.src_ip, A.src_port, A.dst_ip, A.dst_port, A.bytes, A.pkt FROM Traffic_detail as A JOIN (SELECT id FROM Traffic_detail 
+        WHERE $gateway_filter $ip_where `timestamp`>='$date1' AND `timestamp`<'$date2'
 
+        ORDER BY `timestamp` ASC LIMIT $start,$displayed) as T ON A.id = T.id ORDER BY $sort_table.$sort_field $order";
 
+$userdata = mysqli_query($db_link, $fsql);
 
+while (list ($uid, $auth_id, $udata, $urouter, $uproto, $sip, $sport,$dip, $dport, $ubytes, $upkt) = mysqli_fetch_array($userdata)) {
 
+    print "<tr align=center align=center class=\"tr1\" onmouseover=\"className='tr2'\" onmouseout=\"className='tr1'\">\n";
 
+    print "<td class=\"data\">$uid</td>\n";
 
+    print "<td class=\"data\">"; print_auth_simple($db_link,$auth_id); print "</td>\n";
 
+    print "<td class=\"data\">$udata</td>\n";
 
+    print "<td class=\"data\">$gateway_list[$urouter]</td>\n";
 
+    if ($uproto==='6') { $uproto = 'tcp'; }
 
+    if ($uproto==='17') { $uproto = 'udp'; }
 
+    print "<td class=\"data\">" . $uproto . "</td>\n";
 
+    print "<td class=\"data\" align=left>" . long2ip($sip) . "</td>\n";
 
+    $ip_name = '-';
 
+    if ($rdns) { $ip_name = ResolveIP($db_link,$sip); }
 
+    print "<td class=\"data\" align=left>" . $ip_name . "</td>\n";
 
+    print "<td class=\"data\">" .$sport . "</td>\n";
 
+    print "<td class=\"data\" align=left>" . long2ip($dip) . "</td>\n";
 
+    $ip_name = '-';
 
+    if ($rdns) { $ip_name = ResolveIP($db_link,$dip); }
 
+    print "<td class=\"data\" align=left>" . $ip_name . "</td>\n";
 
+    print "<td class=\"data\">" . $dport . "</td>\n";
 
+    print "<td class=\"data\" align=right>" . fbytes($ubytes) . "</td>\n";
 
+    print "<td class=\"data\" align=right>" . $upkt . "</td>\n";
 
+    print "</tr>\n";
 
+}
 
+?>
 
+</table>
 
+<?php print_navigation($page_url,$page,$displayed,$count_records[0],$total); ?>
 
+<br>
 
+<?php
 
+require_once ($_SERVER['DOCUMENT_ROOT']."/inc/footer.php");
 
+?>

+ 1 - 1
html/admin/reports/userdaydetaillog.php
Ver Ficheiro 

@@ -73,7 +73,7 @@ $gateway_list = get_gateways($db_link);
 
 <?php
 
 $fsql = "SELECT A.id, A.`timestamp`, A.router_id, A.proto, A.src_ip, A.src_port, A.dst_ip, A.dst_port, A.bytes, A.pkt FROM Traffic_detail as A JOIN (SELECT id FROM Traffic_detail 
         WHERE $gateway_filter (auth_id='$id') and  `timestamp`>='$date1' and `timestamp`<'$date2'
 
-        ORDER BY `timestamp` ASC LIMIT $start,$displayed) as T ON A.id = T.id ORDER BY $sort_table.$sort_field $order ";
 
+        ORDER BY `timestamp` ASC LIMIT $start,$displayed) as T ON A.id = T.id ORDER BY $sort_table.$sort_field $order";
 
 $userdata = mysqli_query($db_link, $fsql);
 
 while (list ($uid,$udata, $urouter, $uproto, $sip, $sport,$dip, $dport, $ubytes, $upkt) = mysqli_fetch_array($userdata)) {
 
     print "<tr align=center align=center class=\"tr1\" onmouseover=\"className='tr2'\" onmouseout=\"className='tr1'\">\n";

+ 10 - 0
html/inc/common.php
Ver Ficheiro 

@@ -517,6 +517,7 @@ print_submenu_url('Журнал работы ','/admin/logs/index.php',$current_
 
 print_submenu_url('Приключения маков','/admin/logs/mac.php',$current_page,0);
 
 print_submenu_url('История ip-адресов','/admin/logs/ip.php',$current_page,0);
 
 print_submenu_url('Неизвестные','/admin/logs/unknown.php',$current_page,0);
 
+print_submenu_url('Трафик','/admin/logs/detaillog.php',$current_page,0);
 
 print_submenu_url('syslog','/admin/logs/syslog.php',$current_page,1);
 
 print "</div>\n";
 
 }
 
@@ -1119,6 +1120,15 @@ function print_auth_port($db, $port_id)
 
     }
 
 }
 
 
+function print_auth_simple($db, $auth_id)
 
+{
 
+    $auth = get_record($db,"User_auth","id=$auth_id");
 
+    $name = $auth['dns_name'];
 
+    if (empty($name)) { $name = $auth['comments']; } 
+    if (empty($name)) { $name = $auth['ip']; } 
+    print "<a href=\"/admin/users/editauth.php?id=$auth_id\">" . $name . "</a><br>";
 
+}
 
+
 
 function print_auth($db, $auth_id)
 
 {
 
     $auth = get_record($db,"User_auth","id=$auth_id");