-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathconfig.ini.example
More file actions
43 lines (39 loc) · 1.61 KB
/
config.ini.example
File metadata and controls
43 lines (39 loc) · 1.61 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
[Vision]
ip = 155.1.1.6
username = radware
password = radware
rootpassword = radware
[General]
Top_N = 10
ExcludeFilters = Memcached-Server-Reflect
minimum_minutes_between_waves = 5
excluded_attack_types = Memcache, PacketAnomalies, RFC
excludefilters = DOSS-DNS-Ref-L4-Above-3000
outputtimeformat = %%d-%%b-%%Y %%H:%%M:%%S %%Z
hex_based_syslog_ids = True
[Email]
send_email = FALSE
smtp_auth = TRUE
smtp_password = $SMTP_PASSWD
smtp_server = email.server.com
smtp_server_port = 587
smtp_sender = sender@gmail.com
smtp_list = emailrecepient1,emailrecpeient2
[Reputation]
# Set to true to collect IP information from https://www.abuseipdb.com
use_abuseipdb = False
# To obtain an API key for abuseipdb, register at https://www.abuseipdb.com. API key can be found under https://www.abuseipdb.com/account/api (free tier upto 1000 queries per day)
abuseipdb_api_key= 1234
# Set to true to collect IP information from https://www.ipqualityscore.com
use_ipqualityscore = False
# To obtain an API key for ipqualityscore, register at https://www.ipqualityscore.com. API key can be found under https://www.ipqualityscore.com/user/settings (free tier limit is 5000 per month as of 2/9/2024)
ip_quality_score_api_key = 1234
full_country_names = True
included_columns = AbuseIPDB_abuseConfidenceScore,AbuseIPDB_countryCode,AbuseIPDB_domain,AbuseIPDB_isp,IPQualityScore_fraud_score,IPQualityScore_country_code,IPQualityScore_host,IPQualityScore_ISP
use_proxy = False
http_proxy_address = http://http_proxy_url/
https_proxy_address = https://https_proxy_url/
prune_stale_entries = True
[PreviousRun]
epoch_from_time = 1727907868000
epoch_to_time = 1727907868000