Heka iprepd Module

Can be utilized by an analysis module to generate messages for the iprepd output module. The send function expects a table containing violations to be forwarded to the violations endpoint of the iprepd service (e.g., /violations/).

1. Functions

1.1. send

Send a violation message to be processed by the iprepd output plugin.

The violations argument should be an array containing tables with a violation and ip value set.

{
    { ip = "192.168.1.1", violation = "fxa:request.check.block.accountStatusCheck" },
    { ip = "10.10.10.10", violation = "fxa:request.check.block.accountStatusCheck" }
}

Arguments

  • violations - A table containing violation entries

Return

  • sent (boolean) - true if sent, false if invalid argument

source code: iprepd.lua

results matching ""

    No results matching ""