-
Notifications
You must be signed in to change notification settings - Fork 9
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[feature] can it be install on docker? #25
Comments
No, there's currently no support for Docker. If a VM is an option for you, there is a Vagrantfile which sets up a basic installation of NERD (intended for a quick test, not production deployment). See https://github.com/CESNET/NERD/wiki/Installation-and-running There's also a script to perform full installation on a clean CentOS system (although some things still have to be configured manually), see https://raw.githubusercontent.com/CESNET/NERD/master/install/install_centos7.sh Notice: Although NERD is open-source, you're probably the first one trying to install it outside the development team. I'm willing to help you with everything, but expect the installation and maintentance might not by as easy as with some well-known mature projects. |
Thanks for your kindly reply. I am interested in this job. I am working on making it supported in Docker. Now, it can be run in a centos7 container. https://github.com/dianwoshishi/NERD/tree/development But there are some problems that confuse me.
but when i access it outside the container, errors occur in the httpd logs. errors above:
but,i am sure the mongod.servie, rabbitmq-server, are running. The Docker's port mapping works too. the reason errors occur may be that:
Maybe you can help me analyze the root reason with your knowledge on this job. Thanks for your attention again. |
I appreciate your ‘everything’ help. I have some problems with the fmp scores: the features used by the ML algorithm to calculate the fmp scores are 21 dim, less than mentioned in the paper on Future Generation Computer Systems'19 ? is it the latest? the second question is that: without real-world data, it is difficult for others to train a model to Thanks for your job, I really like it! |
There are no access restrictions, it should work the same from within the container and from the outside. The first error seems to be related to pymongo package. I can see they released version 4.0.x quite recently. All my installations use 3.x, so maybe it's because of some incompatilibity between versions (I really have to specify versions in the requirements files!). Try to downgrade to You can ignore the second error (undefined Regarding "Exitted too quickly" errors - the reason is a missing configuration. Some modules need to configure API keys to access the corresponding data sources. You can confirm this in the log files ( I can't help you with Warden, since the data are only available to members of the sharing community (it's not impossible to become part of it, but it generally means to have some kind of detection tool (e.g. a honeypot, IDS, ...) and share its results, and some basic level of trust, i.e. we would need to know who you are - I'll have to discuss it with my colleages who run Warden). |
Regarding FMP: Long explanation: The FMP scoring method for the FGCS'19 paper was implemented and evaluated "offline" using a set of scripts and a static dataset. It was later implemented into NERD, but only in a (too) simplified form. Many of the features which are used in the paper are too difficult or impossible to compute in real time in NERD with its current architecture and data model. So, for the first version, I used just a small subset of features which were easy to get. It turned out that the results of this simplified model are not very good, so, although the implementation is still there, the results are quite hidden from normal users (it appears only as "fmp" attribute in IP detail; the "reputation score" (the number on a coloured background) is based on an unrelated simple formula, no ML). However, very recently, I started to work on this again with one of my colleagues. We're reviving the old scripts, thinking about how to compute all the needed features, and plan to do the proper implementation of the FMP score into NERD. Maybe not exactly the same as in the paper, but as much close as possible. However, it can take a few months. Anyway, as you point out, the current implementation of FMP (as well as the planned one) is designed to work with data from Warden only, and without access to such data, it's indeed impossible for others to use or test it. At least in "online"/"real-time" mode in NERD. For research purposes, a static dataset can be used. There is a public dataset of anonymized data from Warden here: https://data.mendeley.com/datasets/p6tym3fghz/1 Regarding FMP in NERD - as a long-term plan I want to make whole NERD more general, i.e. Warden data should be just one of the possible sources, not the main one. The same holds for IP scoring mechanism - it should utilize all the available data. However, this needs a lot of changes (even the IP scoring will probably work very differently than how FMP is designed now), so it won't be finished soon. If you want to further discuss this (or anything else) outside this public issue, write me at bartos@cesnet.cz (but let's leave the issues regarding NERD installation here). |
So kind you are !
|
The idea of fmp is cool. Thanks for your persistent work on it.i’ll discuss relate work using email in the future. |
I've solved the problem that can not access the This error has nothing to do with your project, it is the browser's security policy that prevents me from accessing it. Sorry for that. I mapped port 80 of the container to port 10080 on my host. but the port 10080 is on the restricted port list of Edge Browser. This is the root reason for preventing access to the |
So far, I've now finished getting your project supported by Docker. there are some changes:
this work can be found at: https://github.com/dianwoshishi/NERD/tree/development |
Safari is also restricted to access the port! |
this project is really cool!
Is there a way to install your work on docker?
The text was updated successfully, but these errors were encountered: