Project

General

Profile

Actions

Feature #4571

closed

Aggregation of IP address lists to ranges within one event

Added by Pavel Kácha almost 6 years ago. Updated over 1 year ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Development - Core
Target version:
Start date:
01/18/2019
Due date:
% Done:

100%

Estimated time:
To be discussed:

Description

Some detectors (namely LaBrea) send large lists of IP addresses. It would spare db io and space (hence querying) to simplify runs of consequential IP addresses to ranges right before saving to db (in storage daemon). Like:

"192.0.2.5", "192.0.2.6", "192.0.2.7", "192.0.2.8" -> "192.0.2.5-192.0.2.8"

Actions

Also available in: Atom PDF