Ignore p0f

cudeso · May 9, 2015 · 351c487 · 351c487
1 parent d70d40c
commit 351c487
Showing 1 changed file with 3 additions and 1 deletion.
diff --git a/elk/dionaea-singlelogline.py b/elk/dionaea-singlelogline.py
@@ -53,7 +53,9 @@
             hostname = row[10]
             connection_id = row[0]
             if src_ip in IGNORE_SRC:
-                continue            
+                continue
+            if connection_protocol == "p0fconnection":
+                continue                
             if LOGFILE:
                 f_log.write("%s : %-10s \t %-10s \t %s \t %s \t %s \t %s \t %s \t %s\n" % (timestamp, connection_type, connection_protocol, protocol, src_ip, src_port, dst_ip, dst_port, hostname))
             else: